Unrated severityNVD Advisory· Published Jun 27, 2024· Updated Aug 1, 2024

Contact Form 7 < 5.9.5 - Unauthenticated Open Redirect

CVE-2024-4704

Description

The Contact Form 7 WordPress plugin before 5.9.5 has an open redirect that allows an attacker to utilize a false URL and redirect to the URL of their choosing.

Affected products

WordPress/Contact Formcpe-rescue
Package: https://wordpress.org/plugins/contact-form
Contact Form Master/Contact Form Masterllm-fuzzy
Range: <5.9.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

wpscan.com/vulnerability/8bdcdb5a-9026-4157-8592-345df8fb1a17/mitreexploitvdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000