CVE-2024-47319

Name of the Vulnerable Software and Affected Versions Bit Form – Contact Form Plugin versions n/a through 2.13.10

Description The issue allows for the unrestricted upload of files with dangerous types, which can lead to code injection. This can potentially be exploited by attackers to inject malicious code.

Recommendations For versions n/a through 2.13.10, update to a version later than 2.13.10 to resolve the issue. As a temporary workaround, consider restricting file uploads to only allow safe file types until a patch is available. Restrict access to the file upload functionality to minimize the risk of exploitation.