Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
contact form 7 captcha project contact form 7 captcha vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-24565
The Contact Form 7 Captcha WordPress plugin prior to 0.0.9 does not have any CSRF check in place when saving its settings, allowing malicious user to make a logged in user with the manage_options change them. Furthermore, the settings are not escaped when output in attributes, le...
Contact Form 7 Captcha Project Contact Form 7 Captcha
6.1
CVSSv3
CVE-2022-2187
The Contact Form 7 Captcha WordPress plugin prior to 0.1.2 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers
Contact Form 7 Captcha Project Contact Form 7 Captcha
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started