Vulnerabilities

CVE-2021-24278

by Fred · 14/05/2021

In the Redirection for Contact Form 7 WordPress plugin before 2.3.4, unauthenticated users can use the wpcf7r_get_nonce AJAX action to retrieve a valid nonce for any WordPress action/function.

Date published : 2021-05-14

https://wpscan.com/vulnerability/99f30604-d62b-4e30-afcd-b482f8d66413

Severe Vulnerabilities Patched in Redirection for Contact Form 7 Plugin

Similar

Tags: Cybersecurity Alert