2 matches found
CVE-2025-47491 WordPress Contact Form Widget plugin <= 1.4.6 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in A WP Life Contact Form Widget new-contact-form-widget allows Cross Site Request Forgery.This issue affects Contact Form Widget: from n/a through = 1.4.6...
WordPress Contact Form Widget Plugin <= 1.3.9 is vulnerable to Sensitive Data Exposure
Software Contact Form Widget Type Plugin Vulnerable versions = 1.3.9 Fixed in 1.4.0 OWASP Top 10 A4: Insecure Design Classification Sensitive Data Exposure CVE CVE-2024-34754 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID d1ef53f8459c Credits Muhammad Daffa Required...