Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
contact form 7 captcha project contact form 7 captcha vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2022-2187
The Contact Form 7 Captcha WordPress plugin prior to 0.1.2 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers
Contact Form 7 Captcha Project Contact Form 7 Captcha
6.8
CVSSv2
CVE-2021-24565
The Contact Form 7 Captcha WordPress plugin prior to 0.0.9 does not have any CSRF check in place when saving its settings, allowing malicious user to make a logged in user with the manage_options change them. Furthermore, the settings are not escaped when output in attributes, le...
Contact Form 7 Captcha Project Contact Form 7 Captcha
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started