WordPress Plugin Vulnerabilities

123ContactForm for WordPress <= 1.5.6 - Validation Bypass via Plugin Verification

Description

The cfp-connect AJAX call uses user input controlled data to perform the signature verification, attackers could craft these values ($message, $signature, $cf_pub_key) to bypass the validation mechanisms and inject their own public_key into the database.

Affects Plugins

Plugin icon
123contactform-for-wordpress
No known fix

References

URL
https://blog.sucuri.net/2021/01/critical-vulnerabilities-in-123contactform-for-wordpress-wordpress-plugin.html

Miscellaneous

Original Researcher
Rodrigo Escobar (Sucuri)
Verified
No
WPVDB ID
ce716e4f-60f8-42e3-8891-a38e7948b970

Timeline

Publicly Published
2021-01-20 (about 3 years ago)
Added
2021-01-20 (about 3 years ago)
Last Updated
2021-01-21 (about 3 years ago)

Other

Published
Title
Published
2020-01-08
Title
Minimal Coming Soon & Maintenance Mode < 2.17 - Insecure permissions: Export Settings/Theme Change
Published
2017-03-13
Title
Dtracker <= 1.5 - Unauthorised Contract Creation
Published
2016-09-26
Title
W3 Total Cache < 0.9.5 – Unauthenticated Security Token Bypass
Published
2024-04-12
Title
Download Manager < 3.2.83 - Unauthenticated Password Protected File Bypass
Published
2016-06-21
Title
WordPress 2.6.0-4.5.2 - Unauthorized Category Removal from Post