Medium severity5.3NVD Advisory· Published Jun 11, 2024· Updated Jun 17, 2026
CVE-2024-3723
CVE-2024-3723
Description
The Advanced Contact form 7 DB plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.0.2 via the wp-content/uploads/advanced-cf7-upload directory. This makes it possible for unauthenticated attackers to extract sensitive data uploaded via this plugin through a form.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.0.2
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.