Description

WordPress Plugin Contact Form is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Contact Form version 1.2 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.3 or latest

References

https://wordpress.org/plugins/contact-form-email/changelog/

Related Vulnerabilities

Play Framework Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-13864)

XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-36095)

WordPress Plugin NextCellent Gallery-NextGEN Legacy Cross-Site Scripting (1.9.27)

MySQL CVE-2014-6520 Vulnerability (CVE-2014-6520)

Oracle JRE CVE-2019-2978 Vulnerability (CVE-2019-2978)

Severity

High

Tags

Missing Update