3 matches found
CVE-2024-4870
The Frontend Registration – Contact Form 7 plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 5.1 due to insufficient restriction on the 'cf7frr' post meta. This makes it possible for authenticated attackers, with editor-level access and above, to modify...
CVE-2024-4870 Frontend Registration – Contact Form 7 <= 5.1 - Authenticated (Editor+) Privilege Escalation
The Frontend Registration – Contact Form 7 plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 5.1 due to insufficient restriction on the 'cf7frr' post meta. This makes it possible for authenticated attackers, with editor-level access and above, to modify...
WordPress Frontend Registration – Contact Form 7 Plugin <= 5.1 is vulnerable to Privilege Escalation
Software Frontend Registration – Contact Form 7 Type Plugin Vulnerable versions = 5.1 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Privilege Escalation CVE CVE-2024-4870 Patch priority Medium CVSS severity Medium 7.2 Developer Claim ownership PSID e2e71615ce5d Credits István Márto...