The Contact Form Entries WordPress plugin prior to 1.3.0 does not validate data when its output in a CSV file, which could lead to CSV injection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
crmperks database for contact form 7\\, wpforms\\, elementor forms |