2024-01-16 15:52:09
WPScan
PUBLISHED
The Contact Form & Lead Form Elementor Builder WordPress plugin before 1.7.4 doesnt have authorisation and nonce checks, which could allow any authenticated users, such as subscriber to update and change various settings