Lucene search
PatchstackCVE-2024-22134HistoryJan 24, 2024 - 12:15 p.m.
CVE-2024-22134
2024-01-2412:15:57
CWE-918
Patchstack
web.nvd.nist.gov
14
cve-2024-22134
ssrf
vulnerability
renzo johnson
contact form 7
mailchimp
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
18.1%
Server-Side Request Forgery (SSRF) vulnerability in Renzo Johnson Contact Form 7 Extension For Mailchimp.This issue affects Contact Form 7 Extension For Mailchimp: from n/a through 0.5.70.
Affected configurations
Node
renzojohnsoncontact_form_7_extension_for_mailchimpRange≤0.5.70wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| renzojohnson | contact_form_7_extension_for_mailchimp | * | cpe:2.3:a:renzojohnson:contact_form_7_extension_for_mailchimp:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "contact-form-7-mailchimp-extension",
"product": "Contact Form 7 Extension For Mailchimp",
"vendor": "Renzo Johnson",
"versions": [
{
"lessThanOrEqual": "0.5.70",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Server side request forgery (ssrf)
2024-01-24 12:15:00
nvd
nvd
CVE-2024-22134
2024-01-24 12:15:57
cvelist
cvelist
wpvulndb
wpvulndb
wordfence
wordfence
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
18.1%
Related for CVE-2024-22134