CVE-2024-7702 | bitpressadmin Contact Form Plugin up to 2.13.9 on WordPress versions entryID sql injection

Inserito da Angelo Barbosa | Ago 20, 2024 | CVE

A vulnerability, which was classified as critical, was found in bitpressadmin Contact Form Plugin up to 2.13.9 on WordPress. This affects the function versions. The manipulation of the argument entryID leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-7702. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-7702 | bitpressadmin Contact Form Plugin up to 2.13.9 on WordPress versions entryID sql injection

Post correlati

CVE-2024-9005 | Schneider Electric EcoStruxure Power Monitoring Expert up to 2022 deserialization (SEVD-2024-282-05)

CVE-2023-50268 | jq = 1.7 decNumber buffer overflow (GHSA-7hmr-442f-qc8j)

CVE-2024-42885 | ESAFENET CDG up to 5.6 data.jsp id sql injection

CVE-2024-46276 | cute_headers cute_png 1.05 cute_png.h cp_chunk heap-based overflow