Incorrect Access Control Security Levels Put Quick Contact Form Users at Risk
CVE-2023-25035
6.5MEDIUM
What is CVE-2023-25035?
A missing authorization vulnerability exists in the Fullworks Quick Contact Form, permitting exploitation through incorrectly configured access control security levels. This flaw allows unauthorized access to resources, posing a risk to users and the integrity of the web application. Affected versions range from non-specified to 8.0.3.1, necessitating prompt attention to mitigate potential exploitation.
Affected Version(s)
Quick Contact Form <= 8.0.3.1