CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Zealousweb: >> Accept Stripe Payments Using Contact Form 7 Security Vulnerabilities

CVE-2024-12255

The Accept Stripe Payments Using Contact Form 7 plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.5 via the cf7sa-info.php file that returns phpinfo() data. This makes it possible for unauthenticated attackers to extract configuration information that can be leveraged in another attack.

CVSS Score

5.3

EPSS Score

0.001

Published

2024-12-12

Page 1

Vulnerabilities

Vulnerable Software

Zealousweb: >> Accept Stripe Payments Using Contact Form 7 Security Vulnerabilities

Products

Pricing

Contact Us