Ari-soft Contact Form 7 Connector — known CVE vulnerabilities
Every CVE whose affected-product data names Ari-soft Contact Form 7 Connector, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-0239 — CVSS 6.1 (medium): The Contact Form 7 Connector WordPress plugin before 1.2.3 does not sanitise and escape a parameter before outputting it back in the page…
CVE-2024-24884 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in ARI Soft Contact Form 7 Connector.This issue affects Contact Form 7 Connector: from n/a…