The Contact Form 7 Connector plugin for WordPress has a security vulnerability in versions 1.2.2 and below. This is because it does not properly check for a special code to prevent fake requests. This means that someone without permission can make the plugin do things it shouldn’t, as long as they can trick the website administrator into clicking on a link.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
