Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Contact Form 7 Multi-Step Addon Malicious Code - CVE-2024-6297 - Vulnerability Database
WP Plugin Contact Form 7 Multi Step Addon

WordPress Plugin Contact Form 7 Multi-Step Addon Malicious Code - CVE-2024-6297

Critical
Reference: CVE-2024-6297
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-6297
Title: WordPress Plugin Contact Form 7 Multi-Step Addon Malicious Code
Overview:

WordPress Plugin Contact Form 7 Multi-Step Addon contains malicous code. Exploiting this issue may allow an attacker to create a new administrative user account thus compromising the affected application and possibly the webserver or computer. WordPress Plugin Contact Form 7 Multi-Step Addon versions 1.0.4 - 1.0.5 are affected.