CVE-2024-1812 | Everest Forms Plugin up to 2.0.7 on WordPress font_url server-side request forgery

Posted by Angelo Barbosa | Mar 16, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Everest Forms Plugin up to 2.0.7 on WordPress. This issue affects some unknown processing. The manipulation of the argument font_url leads to server-side request forgery.

The identification of this vulnerability is CVE-2024-1812. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-1812 | Everest Forms Plugin up to 2.0.7 on WordPress font_url server-side request forgery

Related Posts

CVE-2023-49756 | Eventin Plugin up to 3.3.44 on WordPress authorization

CVE-2023-49815 | WappPress Plugin up to 5.0.3 on WordPress unrestricted upload

CVE-2023-7106 | code-projects E-Commerce Website 1.0 product_details.php prod_id sql injection

CVE-2024-32454 | Wappointment Appointment Bookings for Zoom GoogleMeet and more Plugin server-side request forgery