Description
WordPress Plugin Contact Form 7 is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently predict next values of the content of CAPTCHA. WordPress Plugin Contact Form 7 version 4.1 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.1.1 or latest
References
Related Vulnerabilities
MySQL CVE-2023-22058 Vulnerability (CVE-2023-22058)
MySQL Other Vulnerability (CVE-1999-1188)
WordPress Plugin Widget Settings Importer/Exporter Cross-Site Scripting (1.5.3)
WordPress Plugin Image Gallery-Responsive Photo Gallery SQL Injection (1.0.6)
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-4753)