Approved changes feed: RSS · Atom

cpe:2.3:a:ht_plugins:extensions_for_cf7:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorHt Plugins (069650e6-70e8-59a2-afe8-116c61431ac0)
ProductExtensions For Cf7 (8eb5b0f1-eae9-54f9-9e9b-094b10398887)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2026-24991 vulnerable 2026-06-08 07:53:18.802249 WordPress Extensions For CF7 plugin <= 3.4.0 - Insecure Direct Object References (IDOR) vulnerability
MEDIUM (5.3)
Authorization Bypass Through User-Controlled Key vulnerability in HT Plugins Extensions For CF7 extensions-for-cf7 allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Extensions For CF7: from n/a through <= 3.4.0.
Published: 2026-02-03T14:08:36.896Z
Updated: 2026-04-28T16:14:52.757Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-24695 vulnerable 2026-06-08 07:12:49.742620 WordPress Extensions For CF7 Plugin <= 3.2.0 - Server Side Request Forgery (SSRF) vulnerability
MEDIUM (4.4)
Server-Side Request Forgery (SSRF) vulnerability in HT Plugins Extensions For CF7 extensions-for-cf7 allows Server Side Request Forgery.This issue affects Extensions For CF7: from n/a through <= 3.2.0.
Published: 2025-01-24T17:24:56.863Z
Updated: 2026-05-11T23:16:47.307Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.