Lucene search
K

4 matches found

NVD
NVD
added 2025/04/16 6:15 a.m.24 views

CVE-2025-3247

The Contact Form 7 plugin for WordPress is vulnerable to Order Replay in all versions up to, and including, 6.0.5 via the 'wpcf7stripeskipspamcheck' function due to insufficient validation on a user controlled key. This makes it possible for unauthenticated attackers to reuse a single Stripe...

5.3CVSS0.0023EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/16 5:23 a.m.30 views

CVE-2025-3247 Contact Form 7 <= 6.0.5 - Order Replay Vulnerability

The Contact Form 7 plugin for WordPress is vulnerable to Order Replay in all versions up to, and including, 6.0.5 via the 'wpcf7stripeskipspamcheck' function due to insufficient validation on a user controlled key. This makes it possible for unauthenticated attackers to reuse a single Stripe...

5.3CVSS0.0023EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/16 5:23 a.m.9 views

CVE-2025-3247 Contact Form 7 <= 6.0.5 - Order Replay Vulnerability

The Contact Form 7 plugin for WordPress is vulnerable to Order Replay in all versions up to, and including, 6.0.5 via the 'wpcf7stripeskipspamcheck' function due to insufficient validation on a user controlled key. This makes it possible for unauthenticated attackers to reuse a single Stripe...

5.3CVSS7AI score0.0023EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/04/15 5:42 p.m.5 views

WordPress Contact Form 7 plugin <= 6.0.5 - Order Replay vulnerability

Order Replay vulnerability discovered by Asaf Mozes in WordPress Plugin Contact Form 7 versions = 6.0.5...

5.3CVSS8.3AI score0.0023EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder