WEB APPLICATION VULNERABILITIES Standard & Premium

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Unspecified Vulnerability (2.9.24)

Description

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress version 2.9.24 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.9.25 or latest

References

https://wordpress.org/plugins/ninja-forms/changelog/

Related Vulnerabilities

Jenkins Improper Input Validation Vulnerability (CVE-2017-1000391)

Telerik Web UI Missing Authorization Vulnerability (CVE-2021-28141)

Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-14885)

Envoy Proxy Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-29492)

Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7947)

Severity

High

Tags

Missing Update