Contact Form 7 and SSRF

  • Resolved luksus

    (@suselx)


    1 year ago

    Hi,

    does the Wordfence plugin in premium plan patch the vulnerability of Contact Form 7 plugin to SSRF attacks? I’d like to make sure before buying. I’ve seen that various contact plugins are patched against this vulnerability, but I haven’t found specific information about Contact Form 7.

    Thank you in advance for the information :).

    Regards,
    Lukasz

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support wfmark

    (@wfmark)

    Hi @suselx, thanks for your question.

    All known vulnerabilities for Contact Form 7 are documented here:

    https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/contact-form-7 

    From the documentation above, all the vulnerabilities have all been patched. 

    Please note that we exercise Responsible Disclosure when a vulnerability is found in another plugin, so will report the issue to the relevant developer only, allow them time to patch it and add a Wordfence firewall rule to help protect any of our customers with the vulnerable plugin installed in the meantime.

    If you have any further Wordfence Premium related questions please email us at [email protected] as we are not allowed to discuss the premium version on this forum. 

    Thanks,

    Mark

    Thread Starter luksus

    (@suselx)

    Hi,

    thank you for answer :).

    Regards,

    ?ukasz

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Contact Form 7 and SSRF’ is closed to new replies.