VYPR

Generate PDF Using Contact Form 7

by Zealousweb

Source repositories

CVEs (3)

  • CVE-2024-37555CriJul 9, 2024
    risk 0.59cvss 9.1epss 0.01

    Unrestricted Upload of File with Dangerous Type vulnerability in ZealousWeb Generate PDF using Contact Form 7 generate-pdf-using-contact-form-7.This issue affects Generate PDF using Contact Form 7: from n/a through <= 4.1.2.

  • CVE-2024-6317HigJul 9, 2024
    risk 0.51cvss 8.8epss 0.01

    The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2. This is due to missing nonce validation and the plugin not properly validating a file or its path prior to…

  • CVE-2024-6316HigJul 9, 2024
    risk 0.50cvss 8.8epss 0.01

    The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2. This is due to missing nonce validation and missing file type validation in the…