The Redirection for Contact Form 7 WordPress plugin had a security issue before version 2.3.4. People who did not have to sign in to access the plugin could use a certain action called “”wpcf7r_get_nonce”” to get a valid code that would allow them to do certain things on a WordPress website.