WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blogging sites on PHP and MySQL servers. WordPress plugin Contact Form Advanced Database 1.0.8 and earlier versions have a security bypass vulnerability that stems from the absence of any authorization and CSRF checks in its delete data and export data operations. An attacker could use this vulnerability to bypass access restrictions.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress contact form advanced database | lt | 1.0.8 |