1 results (0.001 seconds)
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1
CVE-2021-3133 – Elementor Contact Form DB <= 1.5 - Cross-Site Request Forgery
https://notcve.org/view.php?id=CVE-2021-3133
The Elementor Contact Form DB plugin before 1.6 for WordPress allows CSRF via backend admin pages. El plugin Elementor Contact Form DB versiones anteriores a 1.6 para WordPress, permite un ataque de tipo CSRF por medio de las páginas de administración del backend • https://advisory.checkmarx.net/advisory/CX-2020-4293 https://plugins.trac.wordpress.org/changeset/2454670 https://wordpress.org/plugins/sb-elementor-contact-form-db/#developers • CWE-352: Cross-Site Request Forgery (CSRF) •