Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WP Plugin Contact Form 7 Vulnerability - CVE-2018-20979 - Vulnerability Database
WP Plugin Contact Form 7

WP Plugin Contact Form 7 Vulnerability - CVE-2018-20979

Critical
Reference: CVE-2018-20979
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-20979
Title: WP Plugin Contact Form 7 Vulnerability
Overview:

The contact-form-7 plugin before 5.0.4 for WordPress has privilege escalation because of capability_type mishandling in register_post_type.