Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
5 Million Sites Running ‘Contact Form 7’ WordPress Plugin Vulnerable to Takeover Attacks
Malware and Vulnerabilities
December 18, 2020
Threat Post
A critical unrestricted file upload bug in Contact Form 7 allows an unauthenticated visitor to take over a site running the plugin. A patch for the vulnerability was released Thursday.
Read More
Wordpress Sites
Contact Form 7 plugin
Unrestricted File Upload Vulnerability
file-type restrictions
Personal Information
Publisher
Previous
Russian State-Sponsored Hackers Breached US Think Tank ...
Breaches and Incidents
Next
'SocGholish' Attack Framework Powers Surge in Drive-By ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_445249072.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_418940485.jpg)
