Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Contact Form by WPForms-Drag Drop Form Builder for WordPress Directory Traversal - Vulnerability Database
WP Plugin Wpforms Lite

WordPress Plugin Contact Form by WPForms-Drag Drop Form Builder for WordPress Directory Traversal

Medium
Reference: No Reference
Title: WordPress Plugin Contact Form by WPForms-Drag Drop Form Builder for WordPress Directory Traversal
Overview:

WordPress Plugin Contact Form by WPForms-Drag Drop Form Builder for WordPress is prone to a directory traversal vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Contact Form by WPForms-Drag Drop Form Builder for WordPress version 1.7.5.3 is vulnerable prior versions may also be affected.