cleantalk
Vulnerabilities and Security Researches

Redirection for Contact Form 7, CVE-2021-36913

CVE, Research URL

CVE-2021-36913

Home page URL

Security reports for Redirection for Contact Form 7

Application

Redirection for Contact Form 7

Published on
Oct 11, 2022
Research Description
Unauthenticated Options Change and Content Injection vulnerability in Qube One Redirection for Contact Form 7 plugin <= 2.4.0 at WordPress allows attackers to change options and inject scripts into the footer HTML. Requires an additional extension (plugin) AccessiBe.
Affected versions
Min -, max 2.5.0.
Status
vulnerable
Previous vulnerability researches
Redirection for Contact Form 7 (CVE-2023-39920) , Jun 10, 2024
Redirection for Contact Form 7 (CVE-2022-4974) , Nov 14, 2024
Redirection for Contact Form 7 (CVE-2021-24280) , Jun 07, 2024
Redirection for Contact Form 7 (CVE-2021-24279) , Jun 07, 2024
Redirection for Contact Form 7 (CVE-2021-36913) , Jun 07, 2024
New vulnerability
Responsive Starter Templates &#8211; Elementor &amp; WordPress Templates (CVE-2025-49856) , Jun 19, 2025
WP VR &#8211; 360 Panorama and Virtual Tour Builder For WordPress (CVE-2025-47452) , Jun 19, 2025
myCred &#8211; Points, Rewards, Gamification, Ranks, Badges &amp; Loyalty Plugin (CVE-2025-49872) , Jun 19, 2025
myCred &#8211; Points, Rewards, Gamification, Ranks, Badges &amp; Loyalty Plugin (CVE-2025-49857) , Jun 19, 2025
WP Dummy Content Generator (CVE-2025-49234) , Jun 19, 2025