CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1801

The Very Simple Contact Form WordPress plugin before 11.6 exposes the solution to the captcha in the rendered contact form, both as hidden input fields and as plain text in the page, making it very easy for bots to bypass the captcha check, rendering the page a likely target for spam bots.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.0%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2022-1801

Very Simple Contact Form Project » Very Simple Contact Form » Version: N/A

cpe:2.3:a:very_simple_contact_form_project:very_simple_contact_form:-
Very Simple Contact Form Project » Very Simple Contact Form » Version: 11.0

cpe:2.3:a:very_simple_contact_form_project:very_simple_contact_form:11.0
Very Simple Contact Form Project » Very Simple Contact Form » Version: 11.1

cpe:2.3:a:very_simple_contact_form_project:very_simple_contact_form:11.1
Very Simple Contact Form Project » Very Simple Contact Form » Version: 11.2

cpe:2.3:a:very_simple_contact_form_project:very_simple_contact_form:11.2
Very Simple Contact Form Project » Very Simple Contact Form » Version: 11.3

cpe:2.3:a:very_simple_contact_form_project:very_simple_contact_form:11.3
Very Simple Contact Form Project » Very Simple Contact Form » Version: 11.4

cpe:2.3:a:very_simple_contact_form_project:very_simple_contact_form:11.4
Very Simple Contact Form Project » Very Simple Contact Form » Version: 11.5

cpe:2.3:a:very_simple_contact_form_project:very_simple_contact_form:11.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1801

Products

Pricing

Contact Us