Skip to main content

Vulnerability in Contact Form 7 Datepicker

High Severity Vulnerability Leads to Closure of Plugin with Over 100,000 Installations


On April 1, 2020, the Wordfence Threat Intelligence team discovered a stored Cross Site Scripting (XSS) vulnerability in Contact Form 7 Datepicker, a WordPress plugin installed on over 100,000 sites. As the plugin developer’s github page indicated that the plugin was no longer being maintained, we contacted the WordPress plugins team with our disclosure, and they immediately removed the plugin from the repository for review. We also contacted the plugin’s developer and received a response verifying that they had no plans to maintain it and were satisfied with removing the plugin from the repository.
All Wordfence users, including Wordfence free and Wordfence Premium users, are protected from this vulnerability by the Wordfence Firewall’s built-in XSS protection. Nonetheless, we strongly recommend deactivating and removing this plugin.



Description: Authenticated Stored Cross-Site Scripting(XSS)
Affected PluginContact Form 7 Datepicker
Plugin Slug: contact-form-7-datepicker
Affected Versions: <= 2.6.0
CVE ID: Will be updated once identifier is supplied.
CVSS Score: 7.4(High)
CVSS VectorCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
Fully Patched Version: N/A
The Contact Form 7 Datepicker plugin allows users to add a datepicker to forms generated by Contact Form 7, and it includes the ability to modify settings for these datepickers. In order to process these settings, it registered an AJAX action calling a function that failed to include a capability check or a nonce check. As such, it was possible for a logged-in attacker with minimal permissions, such as a subscriber, to send a crafted request containing malicious JavaScript which would be stored in the plugin’s settings.
The next time an authorized user created or modified a contact form, the stored JavaScript would be executed in their browser, which could be used to steal an administrator’s session or even create malicious administrative users.

What should I do?

Although all sites running the Wordfence Web Application Firewall should be protected against this vulnerability, we strongly recommend deactivating and removing the Contact Form 7 Datepicker plugin if it is installed on your site. If your site is running Wordfence, the scanner should alert you if any of your plugins are vulnerable, or have been removed from the WordPress repository. As the Contact Form 7 Datepicker plugin is no longer being maintained, it will likely not ever be patched, so it may be wise to search for an alternative plugin with similar functionality.
Due to the number of sites affected by this plugin’s closure, we are intentionally providing minimal details about this vulnerability to prevent widespread exploitation. We will continue to monitor the situation and provide more details in a future update.
Labels:

Comments

Post a Comment

Popular posts from this blog

Etisalat Payment Gateway Integration wordpress

Etisalat Payment Gateway Integration Wordpress What is Etisalat Payment Gateway? IPG (Etisalat Payment Gateway) is the only Payment Gateway in UAE offering electronic payment services especially in UAE and GCC countries. ... Etisalat Payment Gateway connects merchants (sellers of products) in a secure way with banks and financial institutions to process their transactions online. How do I pay my Etisalat bill online? Log on to www.etisalat.ae/quickpay to recharge your prepaid account easily, quickly and securely. Enter your mobile number, the amount, and pay using your credit or debit card. or you can integrate it to your website and receive payment via this gateway direct to you bank. How can I check my Etisalat offer? To check your balance: dial *121# To find prepaid offers and promotions: dial *101# To get Deal of the Day: dial *050# To transfer credit: type the command *100*mobile number*amount# and press ok. Etisalat Payment Gateway Integration wordpress ...
Post a Comment
Read more

Seamlessly Integrate Bexexpress API with WooCommerce for Efficient Shipping Management

 In today’s e-commerce world, efficient shipping management is crucial for providing a seamless customer experience. By integrating Bexexpress, a reliable shipping company, with WooCommerce via a custom WordPress plugin, businesses can automate shipping processes and keep their customers satisfied. What is Bexexpress and Why Choose It? Bexexpress is a trusted shipping and logistics service that offers timely delivery solutions. For WooCommerce store owners, integrating Bexexpress API helps simplify shipping processes and provides an easy way to track shipments in real-time. Bexexpress API WooCommerce integration plugin Benefits of Integrating Bexexpress API with WooCommerce Automated Shipping Calculations:  The integration enables automatic shipping cost calculation based on the customer’s location. Real-Time Tracking:  Display real-time tracking information directly in your WooCommerce store, keeping your customers informed. Improved Order Management:  Manage all o...
Post a Comment
Read more

7 Free Payment gateway india, zero transaction charges payment direct to bank account

ICICI bank payment gateway icici eazy pay and icici first data, most popular icici eazy pay are the example of payment gateway provide by ICICI bank, for different purpose. AXIS bank payment gateway Axis Bank’s world-class Internet Payment Gateway Solution allows you to accept payments on a 24 X 7 basis from around the world. We accept all local and international Visa, MasterCard and maestro cards. Axis bank provide robust transaction processes with enviable uptime and convenience. IPG is a premium service for Merchants with a transaction capable website. All transactions come with 128 bit security and two factor authentication via MasterCard Secure Code and Verified-by-Visa authentication. Merchants across categories such as Airlines, Online Travel Portals, Educational Institutions, Insurance Companies, Utilities, Govt. entities, Shopping portals, Multiplexes, Lifestyle & luxury merchants etc. have embraced our Card acceptance solutions. As a Merchant, availin...
Post a Comment
Read more