High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-21	CVE-2021-24905	Cross-Site Request Forgery (CSRF) vulnerability in Vsourz Advanced CF7 DB The Advanced Contact form 7 DB WordPress plugin before 1.8.7 does not have authorisation nor CSRF checks in the acf7_db_edit_scr_file_delete AJAX action, and does not validate the file to be deleted, allowing any authenticated user to delete arbitrary files on the web server. network low complexity vsourz CWE-352	8.0