CVE-2024-11034 | wpbean Request a Quote for WooCommerce and Elementor Plugin Shortcode fire_contact_form code injection

Posted by Angelo Barbosa | Nov 23, 2024 | CVE

A vulnerability, which was classified as critical, was found in wpbean Request a Quote for WooCommerce and Elementor Plugin up to 1.4 on WordPress. Affected is the function fire_contact_form of the component Shortcode Handler. The manipulation leads to code injection.

This vulnerability is traded as CVE-2024-11034. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-11034 | wpbean Request a Quote for WooCommerce and Elementor Plugin Shortcode fire_contact_form code injection

Related Posts

CVE-2024-22033 | SUSE Package Hub/openSUSE Leap/openSUSE Tumbleweed OBS Service os command injection

CVE-2024-1402 | Mattermost up to 8.1.7/9.1.4/9.2.3 Custom Emoji resource consumption

CVE-2024-53426 | ntopng 6.2 Flow::dissectMDNS heap-based overflow

CVE-2024-48222 | funadmin 5.0.2 /curd/table/edit sql injection