Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Security Bypass - CVE-2021-34648 - Vulnerability Database
WP Plugin Ninja Forms

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Security Bypass - CVE-2021-34648

High
Reference: CVE-2021-34648
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-34648
Title: WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Security Bypass
Overview:

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently export sensitive information or send arbitrary emails that could be used for phishing. WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress version 3.5.7 is vulnerable prior versions are also affected.