Hasthemes Extensions For Cf7 — known CVE vulnerabilities
Every CVE whose affected-product data names Hasthemes Extensions For Cf7, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-29102 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HasThemes Extensions For CF7 allows…
CVE-2025-24695 — CVSS 4.4 (medium): Server-Side Request Forgery (SSRF) vulnerability in HT Plugins Extensions For CF7 extensions-for-cf7 allows Server Side Request…
CVE-2023-23899 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in HasThemes Extensions For CF7 plugin <= 2.0.8 versions leads to arbitrary plugin…