CVE-2021-42358

Posted on 2021년 11월 30일2021년 11월 30일 by admin

CVE-2021-42358

The Contact Form With Captcha WordPress plugin is vulnerable to Cross-Site Request Forgery due to missing nonce validation in the ~/cfwc-form.php file during contact form submission, which made it possible for attackers to inject arbitrary web scripts in versions up to, and including 1.6.2.

Source: CVE-2021-42358

답글 남기기 응답 취소