exploitDog

CVE-2025-46510

Опубликовано: 24 апр. 2025

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

Cross-Site Request Forgery (CSRF) vulnerability in harrysudana Contact Form 7 Calendar allows Stored XSS. This issue affects Contact Form 7 Calendar: from n/a through 3.0.1.

Ссылки

https://patchstack.com/database/wordpress/plugin/cf7-calendar/vulnerability/wordpress-contact-form-7-calendar-plugin-3-0-1-csrf-to-stored-xss-vulnerability?_s_id=cve

EPSS

Процентиль: 5%

0.00022

Низкий

7.1 High

CVSS3

Дефекты

CWE-352

Связанные уязвимости

GHSA-rcwm-v5hv-qc56

CVSS3: 7.1

github

10 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in harrysudana Contact Form 7 Calendar allows Stored XSS. This issue affects Contact Form 7 Calendar: from n/a through 3.0.1.

EPSS

Процентиль: 5%

0.00022

Низкий

7.1 High

CVSS3

Дефекты

CWE-352