Vulnerabilities > Wpplugin > Contact Form 7 Redirect Thank YOU Page > 1.0.3

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-12	CVE-2024-10685	Cross-site Scripting vulnerability in Wpplugin Contact Form 7 Redirect & Thank YOU Page The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping. network low complexity wpplugin CWE-79	6.1
2023-07-10	CVE-2023-24395	Unspecified vulnerability in Wpplugin Contact Form 7 Redirect & Thank YOU Page Cross-Site Request Forgery (CSRF) vulnerability in Scott Paterson Contact Form 7 Redirect & Thank You Page plugin <= 1.0.3 versions. network low complexity wpplugin	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.