Description
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through 1.2.8.
References (1)
Core 1
Core References
Scores
CVSS v3
4.7
EPSS
0.0036
EPSS Percentile
27.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
Details
CWE
CWE-601
Status
published
Products (2)
CRM Perks/Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms
< 1.2.8
crmperks/database_for_contact_form_7\,_wpforms\,_elementor_forms
< 1.2.9
Published
Dec 29, 2023
Tracked Since
Feb 18, 2026