2 matches found
CVE-2024-7782
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the iconRemove function in versions 2.0 to 2.13.4. This makes it...
WordPress Bit Form – Contact Form Plugin Plugin 2.0 - 2.13.4 is vulnerable to Arbitrary File Deletion
Software Bit Form – Contact Form Plugin Type Plugin Vulnerable versions 2.0 - 2.13.4 Fixed in 2.13.5 OWASP Top 10 A1: Broken Access Control Classification Arbitrary File Deletion CVE CVE-2024-7782 Patch priority Low CVSS severity Low 6.8 Developer Claim ownership PSID 53f3b9076db6 Credits siunam...