Lucene search

K

Ninja Forms < 3.5.8 - Unprotected REST-API to Email Injection

🗓️ 22 Sep 2021 00:00:00Reported by Chloe ChamberlandType 
wpvulndb
 wpvulndb
🔗 wpscan.com👁 15 Views

Ninja Forms < 3.5.8 - Unprotected REST-API to Email Injection. Arbitrary email sending via trigger_email_action in versions up to 3.5.7, allowing authenticated attackers to send emails via /ninja-forms-submissions/email-action REST API

Show more
Related
Detection
Refs
Vulners
Node
-ninja-formsRange<3.5.8

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo