Redirection for Contact Form 7
Themeisle
Developer
3.2.9
Latest version
200,000
Installations
No date
Last updated
Vulnerability history
0 present
16 patched
13 Mitigation rules
- Unauthenticated Arbitrary File Copy via move_file_to_upload vulnerability<= 3.2.731/12/2025
- Authenticated (Contributor+) Stored Cross-Site Scripting via qs_date Shortcode vulnerability<= 3.2.618/10/2025
- Unauthenticated Arbitrary File Deletion vulnerability<= 3.2.419/08/2025
- Unauthenticated PHP Object Injection via PHAR Deserialization vulnerability<= 3.2.419/08/2025
- Unauthenticated PHP Object Injection vulnerability<= 3.2.419/08/2025
- Broken Access Control vulnerability<= 2.9.203/10/2023
- Reflected Cross Site Scripting (XSS) vulnerability< 2.9.218/07/2023
- Privilege Escalation vulnerability<= 2.7.006/02/2023
- Unauthenticated Options Change and Content Injection vulnerability<= 2.4.029/09/2022
- Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability< 2.5.028/02/2022
- Sensitive Information Disclosure vulnerability< 2.5.028/02/2022
- Unauthenticated Arbitrary Nonce Generation vulnerability<= 2.3.320/04/2021
- Authenticated Arbitrary Plugin Installation vulnerability<= 2.3.320/04/2021
- Authenticated PHP Object Injection vulnerability<= 2.3.320/04/2021
- Authenticated Arbitrary Post Deletion vulnerability<= 2.3.320/04/2021
- Unprotected AJAX Actions vulnerability<= 2.3.320/04/2021