Ciphercoin Contact Form 7 Database Addon — known CVE vulnerabilities
Every CVE whose affected-product data names Ciphercoin Contact Form 7 Database Addon, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2022-3634 — CVSS 9.8 (critical): The Contact Form 7 Database Addon WordPress plugin before 1.2.6.5 does not validate data when output it back in a CSV file, which could…
CVE-2021-24144 — CVSS 7.8 (high): Unvalidated input in the Contact Form 7 Database Addon plugin, versions before 1.2.5.6, was prone to a vulnerability that lets remote…
CVE-2025-6740 — CVSS 6.1 (medium): The Contact Form 7 Database Addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tmpD’ parameter in all…