Description

WordPress Plugin Contact Form by WD-responsive drag & drop contact form builder tool is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Contact Form by WD-responsive drag & drop contact form builder tool version 1.12.22 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.12.28 or latest

References

https://plugins.svn.wordpress.org/contact-form-maker/trunk/readme.txt

Related Vulnerabilities

WordPress Plugin WORDPRESS VIDEO GALLERY Multiple Vulnerabilities (2.3.1)

PHP Improper Input Validation Vulnerability (CVE-2007-4783)

Sqlite NULL Pointer Dereference Vulnerability (CVE-2020-13632)

Joomla! Core Privilege Escalation (1.6.0 - 3.6.4)

XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46731)

Severity

High

Tags

Missing Update