CVE-2024-54254
CVSS 3.1 Score 6.3 of 10 (medium)
Details
Published Dec 9, 2024
CWE ID 862
Summary
CVE-2024-54254 denotes a Missing Authorization vulnerability discovered in the Kofi Mokome Message Filter for Contact Form 7. This issue allows unauthorized users to access or modify contact form submissions due to insufficient access controls in versions 1.6.3 and earlier. The vulnerability can lead to potential data manipulation or unintended actions on the targeted Contact Form 7 installations. It is crucial for users to update their Message Filter for Contact Form 7 plugin as soon as possible to mitigate the risks associated with this security flaw.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share