Lucene search

Redirection for Contact Form 7 < 2.3.4 - Authenticated Arbitrary Plugin Installation

🗓️ 20 Apr 2021 00:00:00Reported by ChloeType

Redirection for Contact Form 7 plugin allows authenticated arbitrary plugin installation by low level users via import_from_debug AJAX actio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
wpexploit	Redirection for Contact Form 7 < 2.3.4 - Authenticated Arbitrary Plugin Installation	20 Apr 202100:00	–	wpexploit
Prion	Design/Logic Flaw	14 May 202112:15	–	prion
CVE	CVE-2021-24279	14 May 202112:15	–	cve
NVD	CVE-2021-24279	14 May 202112:15	–	nvd
Cvelist	CVE-2021-24279 Redirection for Contact Form 7 < 2.3.4 - Authenticated Arbitrary Plugin Installation	14 May 202111:38	–	cvelist
CNVD	WordPress Redirection for Contact Form 7 Plugin Improper Access Control Vulnerability (CNVD-2021-36046)	17 May 202100:00	–	cnvd
OpenVAS	WordPress Redirection for Contact Form 7 Plugin < 2.3.4 Multiple Vulnerabilities	4 Jun 202100:00	–	openvas

Vulners

Node

-wpcf7-redirectRange<2.3.4

Source	Link
wordfence	www.wordfence.com/blog/2021/04/severe-vulnerabilities-patched-in-redirection-for-contact-form-7-plugin/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Apr 2021 00:00Current

2.4Low risk

Vulners AI Score2.4

EPSS0.00256