Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/04 11:51 p.m.10 views

CVE-2024-13453

The The Contact Form & SMTP Plugin for WordPress by PirateForms plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.6.0. This is due to the software allowing users to execute an action that does not properly validate a value before running...

7.3CVSS7.6AI score0.0054EPSS
Exploits0References1
Circl
Circl
added 2025/01/30 11:15 a.m.6 views

CVE-2024-13453

creationtimestamp| type| source ---|---|--- 2025-01-30 11:15:27+00:00| seen| https://infosec.exchange/users/cve/statuses/113917016519417074 2025-01-30 11:15:51+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgxeabt7yy2n 2025-01-30 13:11:29+00:00| seen|...

7.3CVSS7.3AI score0.0054EPSS
Exploits0References5
NVD
NVD
added 2025/01/30 11:15 a.m.8 views

CVE-2024-13453

The The Contact Form & SMTP Plugin for WordPress by PirateForms plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.6.0. This is due to the software allowing users to execute an action that does not properly validate a value before running...

7.3CVSS0.0054EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/01/30 11:10 a.m.6 views

CVE-2024-13453 Contact Form & SMTP Plugin for WordPress by PirateForms <= 2.6.0 - Unauthenticated Arbitrary Shortcode Execution

The The Contact Form & SMTP Plugin for WordPress by PirateForms plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.6.0. This is due to the software allowing users to execute an action that does not properly validate a value before running...

7.3CVSS7.4AI score0.0054EPSS
Exploits0References3
CVE
CVE
added 2025/01/30 11:10 a.m.50 views

CVE-2024-13453

CVE-2024-13453 – WordPress PirateForms plugin vulnerability (CVE summary) The WordPress plugin “Contact Form & SMTP Plugin for WordPress by PirateForms” (up to version 2.6.0) allows unauthenticated attackers to trigger arbitrary shortcodes through an action that calls do_shortcode without proper ...

7.3CVSS7.3AI score0.0054EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/01/30 11:10 a.m.16 views

CVE-2024-13453 Contact Form & SMTP Plugin for WordPress by PirateForms <= 2.6.0 - Unauthenticated Arbitrary Shortcode Execution

The The Contact Form & SMTP Plugin for WordPress by PirateForms plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.6.0. This is due to the software allowing users to execute an action that does not properly validate a value before running...

7.3CVSS0.0054EPSS
Exploits0References3
Rows per page
Query Builder