cleantalk
Vulnerabilities and Security Researches

Contact Form 7 – Dynamic Text Extension, CVE-2024-56218

CVE, Research URL

CVE-2024-56218

Home page URL

Security reports for Contact Form 7 – Dynamic Text Extension

Application

Contact Form 7 – Dynamic Text Extension

Published on
Dec 31, 2024
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in AuRise Creative, SevenSpark Contact Form 7 Dynamic Text Extension allows Cross Site Request Forgery.This issue affects Contact Form 7 Dynamic Text Extension: from n/a through 5.0.1.
Affected versions
Min -, max 5.0.2.
Status
vulnerable
Previous vulnerability researches
Contact Form 7 – Dynamic Text Extension (a96df0f01268aec2ea27d8015425dd3a2aec921e) , Jun 07, 2024
Contact Form 7 – Dynamic Text Extension (CVE-2023-6630) , Jun 07, 2024
Contact Form 7 – Dynamic Text Extension (CVE-2024-10084) , Nov 07, 2024
Contact Form 7 – Dynamic Text Extension (CVE-2024-56218) , Dec 23, 2024
New vulnerability
Contact Form 7 reCAPTCHA (CVE-2025-23972) , Jul 08, 2025
Easy Stripe (CVE-2025-49302) , Jul 08, 2025
Gallery Widget (CVE-2025-28969) , Jul 08, 2025
Contact Us Page – Contact People (CVE-2025-28967) , Jul 07, 2025
WP fancybox (CVE-2025-26591) , Jul 07, 2025