VYPR

Contact Form 7 Email Add On

by Krishaweb

CVEs (1)

  • CVE-2024-10898HigNov 21, 2024
    risk 0.50cvss 8.8epss 0.01

    The Contact Form 7 Email Add on plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.9 via the cf7_email_add_on_add_admin_template() function. This makes it possible for authenticated attackers, with Contributor-level access and…