Vulnerabilidades en zealopensource
10 resultadosCVE-2024-6317HIGHGenerate PDF using Contact Form 7 <= 4.1.2 - Cross-Site Request Forgery to Arbitrary File DeletionEPSS 0.6%CVE-2025-12825MEDIUMUser Registration Using Contact Form 7 <= 2.5 - Authenticated (Subscriber+) Information ExposureEPSS 0.5%CVE-2024-6316HIGHGenerate PDF using Contact Form 7 <= 4.1.2 - Cross-Site Request Forgery to Arbitrary File UploadEPSS 0.5%CVE-2024-12255MEDIUMAccept Stripe Payments Using Contact Form 7 <= 2.5 - Unauthenticated Information ExposureEPSS 0.5%CVE-2024-12250MEDIUMAccept Authorize.NET Payments Using Contact Form 7 <= 2.2 - Unauthenticated Information ExposureEPSS 0.4%CVE-2025-2883MEDIUMAccept SagePay Payments Using Contact Form 7 <= 2.0 - Unauthenticated Information ExposureEPSS 0.3%CVE-2026-0742MEDIUMSmart Appointment & Booking <= 1.0.7 - Authenticated (Subscriber+) Stored Cross-Site Scripting via saab_save_form_data AJAX ActionEPSS 0.3%CVE-2026-5693MEDIUMSmart Appointment & Booking <= 1.0.8 - Missing Authorization to Unauthenticated Arbitrary Booking CancellationEPSS 0.2%CVE-2026-9187MEDIUMAbandoned Contact Form 7 <= 2.2 - Missing Authorization to Unauthenticated Arbitrary Post Deletion via 'recover_id' ParameterEPSS 0.2%CVE-2025-12834MEDIUMAccept Stripe Payments Using Contact Form 7 <= 3.1 - Reflected Cross-Site Scripting via failure_messageEPSS 0.2%