WordPress Plugin Vulnerabilities

CP Contact Form with Paypal <= 1.1.5 - Multiple Vulnerabilities

Description

The CP Contact Form with PayPal WordPress plugin was affected by a Multiple Vulnerabilities security vulnerability.

Affects Plugins

Plugin icon
cp-contact-form-with-paypal
Fixed in 1.1.6

References

CVE
CVE-2015-9234
CVE
CVE-2015-9233
URL
https://packetstormsecurity.com/files/#132655/
URL
https://plugins.trac.wordpress.org/changeset?new=1166955%40cp-contact-form-with-paypal&old=1162550%40cp-contact-form-with-paypal
URL
https://seclists.org/fulldisclosure/2015/Jul/49

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
ddc78248-c91e-4d9c-b939-324681aa1022

Timeline

Publicly Published
2015-07-11 (about 10 years ago)
Added
2015-07-11 (about 10 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2014-08-01
Title
Spider Calendar 1.3.0 - Multiple Vulnerabilities
Published
2021-07-12
Title
Frontend File Manager < 18.3 - Authenticated Arbitrary Settings Change to Arbitrary File Upload
Published
2019-06-24
Title
HTML5 Maps <= 1.6.5.6 - CSRF & XSS
Published
2014-08-01
Title
Spider Catalog - Cross-Site Scripting & SQL Injection Vulnerabilities
Published
2015-07-08
Title
SEO SearchTerms Tagging 2 <= 1.535 - XSS & Authenticated SQL Injection