4 matches found
CVE-2022-3634
The Contact Form 7 Database Addon WordPress plugin before 1.2.6.5 does not validate data when output it back in a CSV file, which could lead to CSV injection...
CVE-2022-3634
Affects WordPress Contact Form 7 Database Addon plugin for WordPress (versions prior to 1.2.6.5). The vulnerability arises because the plugin does not validate data when exporting to CSV, enabling CSV injection. CVSS v3.1 base score 9.8 (CRITICAL). Remediation: update to version 1.2.6.5 or later....
CVE-2022-3634 Contact Form 7 Database Addon < 1.2.6.5 - CSV Injection
The Contact Form 7 Database Addon WordPress plugin before 1.2.6.5 does not validate data when output it back in a CSV file, which could lead to CSV injection...
CVE-2022-3634 Contact Form 7 Database Addon < 1.2.6.5 - CSV Injection
The Contact Form 7 Database Addon WordPress plugin before 1.2.6.5 does not validate data when output it back in a CSV file, which could lead to CSV injection...