CVE-2024-4144 in Simple Basic Contact Form Plugininformation

Résumé

par MITRE • 14/05/2024

The Simple Basic Contact Form plugin for WordPress for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 20240502. This allows unauthenticated attackers to execute arbitrary shortcodes. The severity and exploitability depends on the functionality of other plugins installed in the environment.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Réserver

24/04/2024

Divulgation

14/05/2024

Modérer

accepté

Entrée

VDB-264037

CPE

prêt

EPSS

0.00662

KEV

non

Activités

très faible

Sources

Do you need the next level of professionalism?

Upgrade your account now!