cleantalk
Vulnerabilities and Security Researches

Contact Form 7 IE DatePicker and Number Spinner Fix, 02c690f19974a88d0c8d24171a85c979710c0152

CVE, Research URL

02c690f19974a88d0c8d24171a85c979710c0152

Home page URL

Security reports for Contact Form 7 IE DatePicker and Number Spinner Fix

Application

Contact Form 7 IE DatePicker and Number Spinner Fix

Published on
Apr 02, 2020
Research Description
Contact Form 7 IE DatePicker and Number Spinner Fix [contact-form-7-datepicker-fix] <= 2.6.0 (unfixed) WordPress Contact Form 7 Datepicker plugin <= 2.6.0 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by WordFence in WordPress Contact Form 7 Datepicker plugin (versions <= 2.6.0).
Affected versions
max 2.6.0.
Status
vulnerable
Previous vulnerability researches
Social Photo Gallery (CVE-2019-14467) , Jun 06, 2024
Photo Gallery ( Responsive ) (CVE-2025-27276) , Feb 26, 2025
Image Gallery &#8211; Responsive Photo Gallery (CVE-2025-24697) , Feb 05, 2025
Image Gallery &#8211; Responsive Photo Gallery (CVE-2024-12403) , Jan 16, 2025
ZooEffect Plugin for Video player, Photo Gallery Slideshow jQuery and audio / music / podcast &#8211; HTML5 (CVE-2023-1427) , Jun 06, 2024
New vulnerability
WooCommerce Google Analytics Integration By Advanced WC Analytics (CVE-2023-33999) , Jun 13, 2026
Thank You Page for WooCommerce (CVE-2023-33999) , Jun 13, 2026
WP VR &#8211; 360 Panorama and Virtual Tour Builder For WordPress (CVE-2022-47150) , Jun 13, 2026
WP VR &#8211; 360 Panorama and Virtual Tour Builder For WordPress (CVE-2023-33999) , Jun 13, 2026
Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets &amp; Elementor T (CVE-2025-49262) , Jun 13, 2026