Unrated severityNVD Advisory· Published Feb 17, 2023· Updated Apr 28, 2026
WordPress Extensions For CF7 Plugin <= 2.0.8 is vulnerable to Cross Site Request Forgery (CSRF)
CVE-2023-23899
Description
Cross-Site Request Forgery (CSRF) vulnerability in HasThemes Extensions For CF7 plugin <= 2.0.8 versions leads to arbitrary plugin activation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.0.8
- HasThemes/Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection)v5Range: n/a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.