A vulnerability was found in Contact Form Advanced Database Plugin up to 1.0.8 on WordPress (WordPress Plugin). It has been declared as problematic. This vulnerability affects the function delete_cf7_data/export_cf7_data. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Contact Form Advanced Database Plugin up to 1.0.8 on WordPress delete_cf7_data/export_cf7_data cross-site request forgery
- Virtual Patching
- December 13, 2021
- 4:07 pm
- Virtual Patching
- December 13, 2021
- 4:07 pm
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2023-0556 : CONTENTSTUDIO PLUGIN UP TO 1.2.5 ON WORDPRESS CSTU_GET_METADATA AUTHORIZATION
Description The ContentStudio plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on several functions
CVE-2022-48108 : D-LINK DIR-878 1.30B08 SUBNETMASK COMMAND INJECTION
Description D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /SetNetworkSettings/SubnetMask. This vulnerability allows attackers to
CVE-2022-47767 : SOLAR-LOG GATEWAY UP TO 4.2.7/5.1.1 SLCORE BACKDOOR
Description A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker.