3 matches found
CVE-2023-24405
Cross-Site Request Forgery CSRF vulnerability in Scott Paterson Contact Form 7 – PayPal & Stripe Add-on plugin = 1.9.3 versions...
CVE-2023-24405
CVE-2023-24405 is a CSRF vulnerability in the WordPress plugin Contact Form 7 – PayPal & Stripe Add-on up to version 1.9.3 . Multiple connected sources confirm the issue and its fix. Root cause is a CSRF flaw in that add-on, enabling an attacker to induce unwanted actions in a site where users ar...
WordPress Contact Form 7 – PayPal & Stripe Add-on Plugin <= 1.9.3 is vulnerable to Cross Site Request Forgery (CSRF)
Software Contact Form 7 – PayPal & Stripe Add-on Type Plugin Vulnerable versions = 1.9.3 Fixed in 1.9.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-24405 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 071c0edcb7eb...