Skip to main content

Accept Stripe Payments Using Contact Form 7

1 CVEs product

Monthly

CVE-2024-12255 MEDIUM POC PATCH This Month

The Accept Stripe Payments Using Contact Form 7 plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.5 via the cf7sa-info.php file that returns phpinfo(). Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

WordPress Information Disclosure PHP Accept Stripe Payments Using Contact Form 7
NVD
CVSS 3.1
5.3
EPSS
0.5%
EPSS 1% CVSS 5.3
MEDIUM POC PATCH This Month

The Accept Stripe Payments Using Contact Form 7 plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.5 via the cf7sa-info.php file that returns phpinfo(). Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

WordPress Information Disclosure PHP +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy