Encrypted Contact Form <= 1.0.4 - CSRF & XSS

Affects Plugin

fixed in version 1.1

References

CVE 2015-4010
EXPLOITDB 37264
PACKETSTORM 131955
PACKETSTORM 132209
URL https://seclists.org/fulldisclosure/2015/May/63

Classification

Type MULTI

Miscellaneous

Submitter firefart
Submitter Website https://firefart.at/
Submitter Twitter _FireFart_
Views 5350
Verified No
WPVDB ID 7992

Timeline

Publicly Published 2015-05-15 (over 4 years ago)
Added 2015-05-15 (over 4 years ago)
Last Updated 2019-10-21 (24 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin