WEB APPLICATION VULNERABILITIES Standard & Premium

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Unspecified Vulnerability (2.9.24)

Description

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress version 2.9.24 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.9.25 or latest

References

https://wordpress.org/plugins/ninja-forms/changelog/

Related Vulnerabilities

Apache HTTP Server Resource Management Errors Vulnerability (CVE-2005-3357)

CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-2117)

WordPress Plugin Gmail SMTP Arbitrary File Disclosure (1.1.0)

Dot CMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-3187)

WordPress Plugin Calendar by WD-Responsive Event Calendar for WordPress SQL Injection (1.4.9)

Severity

High

Tags

Missing Update