cleantalk
Vulnerabilities and Security Researches

Contact Form 7 – PayPal & Stripe Add-on, CVE-2023-24405

CVE, Research URL

CVE-2023-24405

Home page URL

Security reports for Contact Form 7 – PayPal & Stripe Add-on

Application

Contact Form 7 – PayPal & Stripe Add-on

Published on
Jul 10, 2023
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Scott Paterson Contact Form 7 – PayPal & Stripe Add-on plugin <= 1.9.3 versions.
Affected versions
Min -, max 1.9.4.
Status
vulnerable
Previous vulnerability researches
Contact Form 7 &#8211; PayPal &amp; Stripe Add-on (CVE-2024-48021) , Oct 12, 2024
Contact Form 7 &#8211; PayPal &amp; Stripe Add-on (CVE-2025-47518) , May 09, 2025
Contact Form 7 &#8211; PayPal &amp; Stripe Add-on (CVE-2024-10683) , Nov 10, 2024
Contact Form 7 &#8211; PayPal &amp; Stripe Add-on (CVE-2024-29130) , Jun 07, 2024
Contact Form 7 &#8211; PayPal &amp; Stripe Add-on (CVE-2023-24405) , Jun 07, 2024
New vulnerability
SMS Alert Order Notifications &#8211; WooCommerce (CVE-2025-3876) , May 11, 2025
SMS Alert Order Notifications &#8211; WooCommerce (CVE-2025-3878) , May 11, 2025
WordPress Review Plugin: The Ultimate Solution for Building a Review Website (CVE-2025-2158) , May 11, 2025
Drag and Drop Multiple File Upload for WooCommerce (CVE-2025-4403) , May 11, 2025
Contact Us By Lord Linus (CVE-2025-1382) , May 11, 2025