21Şub
CVE-2024-1217 | kaliforms Contact Form Builder with Drag & Drop Plugin up to 2.3.41 on WordPress Deactivation await_plugin_deactivation authorization
A vulnerability classified as critical has been found in kaliforms Contact Form Builder with Drag & Drop Plugin up to 2.3.41 on WordPress. Affected is the functionawait_plugin_deactivation
of the component Deactivation Handler. The manipulation leads to missing authorization.
This vulnerability is traded as CVE-2024-1217. It is possible to launch the attack remotely. There is no exploit available.