CVE-2023-47779

MEDIUM

CRM Perks Integration for Constant Contact and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.1.4 - Open Redirect

Title source: llm

Description

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks. Integration for Constant Contact and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for Constant Contact and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through 1.1.4.

References (1)

Core 1

Core References

Third Party Advisory vdb-entry

https://patchstack.com/database/vulnerability/cf7-constant-contact/wordpress-integration-for-contact-form-7-and-constant-contact-plugin-1-1-4-open-redirection-vulnerability?_s_id=cve

Scores

CVSS v3 4.7

EPSS 0.0038

EPSS Percentile 29.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

Details

CWE

CWE-601

Status published

Products (2)

CRM Perks/Integration for Constant Contact and Contact Form 7, WPForms, Elementor, Ninja Forms < 1.1.4

crmperks/integration_for_constant_contact_and_contact_form_7\,_wpforms\,_elementor\,_ninja < 1.1.5

Published Dec 07, 2023

Tracked Since Feb 18, 2026