CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ari-Soft: >> Contact Form 7 Connector Security Vulnerabilities

CVE-2024-24884

Cross-Site Request Forgery (CSRF) vulnerability in ARI Soft Contact Form 7 Connector.This issue affects Contact Form 7 Connector: from n/a through 1.2.2.

CVSS Score

4.3

EPSS Score

0.001

Published

2024-02-12

CVE-2024-0239

The Contact Form 7 Connector WordPress plugin before 1.2.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against administrators.

CVSS Score

6.1

EPSS Score

0.003

Published

2024-01-16

Page 1

Vulnerabilities

Vulnerable Software

Ari-Soft: >> Contact Form 7 Connector Security Vulnerabilities

Products

Pricing

Contact Us