contact_form_submissions_project CVE Vulnerabilities & CVE List (2)

Products (CPE): — CVEs: 2

contact_form_submissions_project vulnerability overview

This page aggregates publicly disclosed CVE and security risk information related to contact_form_submissions_project, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.

Vulnerability distribution trend (last 24 months)

Showing 12 of 2 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2022-0248 The Contact Form Submissions WordPress plugin before 1.7.3 does not sanitise and escape additional fields in contact form requests before outputting them in the related submission. As a result, unauthenticated attacker could perform Cross-Site Scripting attacks against admins viewing the malicious submission [email protected] 6.1 1.69% 2022-03-14 2024-11-21
CVE-2021-24125 Unvalidated input in the Contact Form Submissions WordPress plugin before 1.7.1, could lead to SQL injection in the wpcf7_contact_form GET parameter when submitting a filter request as a high privilege user (admin+) [email protected] 7.2 1.46% 2021-03-18 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence