CVE-2023-31095
MEDIUM WAF: Medium
CVSS 6.1
Published: 2023-12-29
CWE-601
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through 1.2.8.
WAF Coverage Analysis
Open Redirect
Medium WAF Coverage
OWASP: A01:2021 Broken Access Control
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| crmperks | database_for_contact_form_7\,_wpforms\,_elementor_forms | up to 1.2.9 |
References
- patchstack.com (Third Party Advisory)