CVE-2024-5808
30.07.2024, 06:15
The WP Ajax Contact Form WordPress plugin through 2.2.2 does not have CSRF check in place when deleting emails from the email list, which could allow attackers to make a logged in admin perform such action via a CSRF attack
| Vendor | Product | Version |
|---|---|---|
| olaf_lederer | ajax_contact_form | 𝑥 ≤ 2.2.2 |
| masdiblogs | wp_ajax_contact_form | 𝑥 ≤ 2.2.2 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration