CVE-2021-24144

Unvalidated input in the Contact Form 7 Database Addon plugin, versions before 1.2.5.6, was prone to a vulnerability that lets remote attackers inject arbitrary formulas into CSV files.
References
Configurations

Configuration 1

cpe:2.3:a:ciphercoin:contact_form_7_database_addon:*:*:*:*:*:wordpress:*:*

Information

Published : 2021-03-18 03:15

Updated : 2022-11-14 03:19


NVD link : CVE-2021-24144

Mitre link : CVE-2021-24144

Products Affected
No products.
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File