WordPress Plugin Vulnerabilities

Contact Form - Form builder by Kali Forms < 2.1.2 - Unauthenticated Arbitrary Post Deletion

Description

The plugin registers the kaliforms_form_delete_uploaded_file AJAX action to call the "delete_file" function, and makes it accessible to all users, authenticated or not

Affects Plugins

Plugin icon
kali-forms
Fixed in 2.1.2

References

CVE
CVE-2020-36712
URL
https://blog.nintechnet.com/wordpress-kali-forms-plugin-fixed-multiple-vulnerabilities/

Classification

Type
ACCESS CONTROLS
OWASP top 10
A5: Broken Access Control
CWE
CWE-284
CVSS
7.5 (high)

Miscellaneous

Original Researcher
Jerome Bruandet (nintechnet)
Verified
No
WPVDB ID
06070ebd-1843-4a01-a668-8123688b7c7b

Timeline

Publicly Published
2020-08-21 (about 5 years ago)
Added
2020-08-21 (about 5 years ago)
Last Updated
2023-06-08 (about 2 years ago)

Other

Published
Title
Published
2022-01-06
Title
Ultimate Product Catalog < 5.0.26 - Subscriber+ Arbitrary Product Creation & Settings Update
Published
2024-04-03
Title
CGC Maintenance Mode <= 1.2 - Sensitive Information Exposure
Published
2021-01-08
Title
Modal Survey < 2.0.1.8.2 - Unauthenticated Arbitrary Survey Update, Deletion and Creation
Published
2026-01-27
Title
Simple User Registration < 6.8 - Authenticated (Subscriber+) Privilege Escalation via profile_save_field
Published
2024-03-04
Title
Schema Pro < 2.7.16 - Contributor+ Custom Field Access