cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-12341,https://securityvulnerability.io/vulnerability/CVE-2024-12341,Unauthorized Data Modification Vulnerability in Contact Form 7 Plugin,"The Custom Skins Contact Form 7 plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'cf7cs_action_callback' function in all versions up to, and including, 1.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update the content of any post and create new skins.",Wordpress,Custom Skins Contact Form 7,4.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-12-12T03:23:04.555Z,0