VYPR

Integrate Contact Form 7 And Aweber

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-49988MedJun 20, 2025
    Renzojohnson
    Contact Form 7 Extension For Mailchimp
    risk 0.34cvss 5.3epss 0.00

    Missing Authorization vulnerability in Renzo Johnson Contact Form 7 AWeber Extension integrate-contact-form-7-and-aweber allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form 7 AWeber Extension: from n/a through <= 0.1.40.

  • CVE-2025-12167MedNov 8, 2025
    WordPress
    Integrate Contact Form 7 And Aweber
    risk 0.28cvss 4.3epss 0.00

    The Contact Form 7 AWeber Extension plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wp_ajax_aweber_logreset' AJAX endpoint in all versions up to, and including, 0.1.42. This makes it possible for authenticated attackers, with Subscriber-level access and above, to reset the AWeber logs.