Known Vulnerabilities for products from Rocklobster
Listed below are 8 of the newest known vulnerabilities associated with the vendor "Rocklobster".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-2242 json | The Contact Form 7 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘active-tab’ parameter in... | Not Provided | 2024-03-13 | 2026-04-08 |
| CVE-2023-40609 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aiyaz, maheshpatel Cont... | 9.8 - CRITICAL | 2023-11-06 | 2023-11-10 |
| CVE-2023-6630 json | The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Insecure Direct Object Reference in all v... | Not Provided | 2024-01-11 | 2026-04-08 |
| CVE-2023-6449 json | The Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in t... | Not Provided | 2023-12-01 | 2026-04-08 |
| CVE-2021-24159 json | Due to the lack of sanitization and lack of nonce protection on the custom CSS feature, an attacker could craft a request to ... | 8.8 - HIGH | 2021-04-05 | 2023-11-07 |
| CVE-2020-35489 json | The contact-form-7 (aka Contact Form 7) plugin before 5.3.2 for WordPress allows Unrestricted File Upload and remote code exe... | 10 - CRITICAL | 2020-12-17 | 2020-12-22 |
| CVE-2018-20979 json | The contact-form-7 plugin before 5.0.4 for WordPress has privilege escalation because of capability_type mishandling in regis... | 9.8 - CRITICAL | 2019-08-22 | 2020-08-24 |
| CVE-2014-2265 json | Rock Lobster Contact Form 7 before 3.7.2 allows remote attackers to bypass the CAPTCHA protection mechanism and submit arbitr... | 5 - MEDIUM | 2014-03-14 | 2022-09-27 |
Known software with vulnerabilities from Rocklobster
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Rocklobster | Contact Form 7 | 3.6 |