PT-2019-10400 · WordPress · Contact-Form-To-Email Plugin

Publicado

2019-08-13

Atualizado

2019-08-15

CVE-2018-20964

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions contact-form-to-email plugin versions prior to 1.2.66

Description The issue affects the contact-form-to-email plugin for WordPress, allowing for CSRF attacks.

Recommendations For versions prior to 1.2.66, update to version 1.2.66 or later to resolve the issue.

Correção

CSRF

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2018-20964

Contact-Form-To-Email Plugin