Описание
The Simple Basic Contact Form plugin for WordPress for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 20240502. This allows unauthenticated attackers to execute arbitrary shortcodes. The severity and exploitability depends on the functionality of other plugins installed in the environment.
Ссылки
EPSS
Процентиль: 82%
0.01719
Низкий
6.5 Medium
CVSS3
Дефекты
Связанные уязвимости
CVSS3: 6.5
github
больше 1 года назад
The Simple Basic Contact Form plugin for WordPress for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 20240502. This allows unauthenticated attackers to execute arbitrary shortcodes. The severity and exploitability depends on the functionality of other plugins installed in the environment.
EPSS
Процентиль: 82%
0.01719
Низкий
6.5 Medium
CVSS3