CVE-2022-3634

The Contact Form 7 Database Addon WordPress plugin before 1.2.6.5 does not validate data when output it back in a CSV file, which could lead to CSV injection
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:ciphercoin:contact_form_7_database_addon:*:*:*:*:*:wordpress:*:*

History

07 Nov 2023, 03:51

Type Values Removed Values Added
CWE CWE-1236

23 Nov 2022, 15:47

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
References (CONFIRM) https://wpscan.com/vulnerability/b5eeefb0-fb5e-4ca6-a6f0-67f4be4a2b10 - (CONFIRM) https://wpscan.com/vulnerability/b5eeefb0-fb5e-4ca6-a6f0-67f4be4a2b10 - Exploit, Third Party Advisory
First Time Ciphercoin
Ciphercoin contact Form 7 Database Addon
CPE cpe:2.3:a:ciphercoin:contact_form_7_database_addon:*:*:*:*:*:wordpress:*:*

21 Nov 2022, 13:00

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-21 11:15

Updated : 2023-12-10 14:48


NVD link : CVE-2022-3634

Mitre link : CVE-2022-3634

CVE.ORG link : CVE-2022-3634


JSON object : View

Products Affected

ciphercoin

  • contact_form_7_database_addon
CWE

No CWE.