cleantalk
Vulnerabilities and Security Researches

Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection), CVE-2023-23899

CVE, Research URL

CVE-2023-23899

Home page URL

Security reports for Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection)

Application

Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection)

Published on
Feb 17, 2023
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in HasThemes Extensions For CF7 plugin <= 2.0.8 versions leads to arbitrary plugin activation.
Affected versions
Min -, max 2.0.9.
Status
vulnerable
Previous vulnerability researches
Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection) (CVE-2025-24695) , Jan 26, 2025
Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection) (CVE-2024-29102) , Jun 07, 2024
Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection) (CVE-2023-23899) , Jun 07, 2024
Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection) (CVE-2025-7645) , Jul 23, 2025
New vulnerability
Orion Login with SMS (CVE-2025-7692) , Jul 23, 2025
WordPress Infinite Scroll &#8211; Ajax Load More (CVE-2015-10140) , Jul 23, 2025
Social Streams (CVE-2025-7722) , Jul 23, 2025
Ebook Store (CVE-2025-7486) , Jul 23, 2025
Formality (CVE-2025-48157) , Jul 23, 2025