← Back to CVE List
CVE-2021-24689
The Contact Forms - Drag & Drop Contact Form Builder WordPress plugin through 1.0.5 allows high privilege users to download arbitrary files from the web server via a path traversal attack
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt