Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Hasthemes Subscribe
Filtered by product Extensions For Cf7
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-29102 1 Hasthemes 1 Extensions For Cf7 2026-01-28 N/A 7.1 HIGH
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HasThemes Extensions For CF7 allows Stored XSS.This issue affects Extensions For CF7: from n/a through 3.0.6.
CVE-2025-24695 1 Hasthemes 1 Extensions For Cf7 2026-01-23 N/A 4.4 MEDIUM
Server-Side Request Forgery (SSRF) vulnerability in HasThemes Extensions For CF7 allows Server Side Request Forgery. This issue affects Extensions For CF7: from n/a through 3.2.0.
CVE-2023-23899 1 Hasthemes 1 Extensions For Cf7 2024-11-21 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in HasThemes Extensions For CF7 plugin <= 2.0.8 versions leads to arbitrary plugin activation.