Latest Vulnerabilities and Exploits

CVE ID:

CVE-2021-3133

Details:

The Elementor Contact Form DB plugin before 1.6 for WordPress allows CSRF via backend admin pages.

References:

:https://plugins.trac.wordpress.org/changeset/2454670/
:https://wordpress.org/plugins/sb-elementor-contact-form-db/#developers

ZeroDayLab Assigned Tags:

CROSS SITE SCRIPTING - What is Cross Site Scripting?