WordPress Contact Form 7 Vulnerabilities
Wordpress Contact Form 7 vulnerabilities.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Drag and Drop Multiple File Upload for Contact Form 7 <= 1.3.9.7 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'drag_n_drop_text' and 'drag_n_drop_browse_text' Settings
CVE-2026-8991WordPressDrag And Drop Multiple...4.4MEDIUMStored Cross-Site Scripting in Freshsales Integration for WordPress
CVE-2026-8901WordPressIntegration For Freshs...7.2HIGHPayment Bypass Vulnerability in Contact Form 7 – PayPal & Stripe Add-on for WordPress
CVE-2026-9189WordPressContact Form 7 – Paypa...5.3MEDIUMCross-Site Request Forgery in WP Contact Form 7 DB Handler Plugin by WordPress
CVE-2026-6455WordPressWP Contact Form 7 Db H...8.1HIGHCross-Site Scripting Vulnerability in HT Plugins HT Contact Form 7
CVE-2026-42728WordPressHt Contact Form 77.1HIGHMissing Authorization in Coinbase Commerce for Contact Form 7 Plugin
CVE-2026-6709WordPressCoinbase Commerce For ...4.3MEDIUMUncontrolled Resource Consumption in Contact Form 7 Plugin by WordPress
CVE-2026-25863WordPressConditional Fields For...8.7HIGHReflected Cross-Site Scripting in Multiple WordPress Plugins
CVE-2024-13362WordPressGo Fetch Jobs (for WP ...6.1MEDIUMArbitrary File Upload Vulnerability in Drag and Drop File Upload Plugin for WordPress
CVE-2026-5364WordPressDrag And Drop File Upl...8.1HIGHArbitrary File Upload Vulnerability in Drag and Drop Multiple File Upload for Contact Form 7 Plugin
CVE-2026-5718WordPressDrag And Drop Multiple...8.1HIGHPath Traversal Vulnerability in Drag and Drop Multiple File Upload for Contact Form 7 Plugin
CVE-2026-5710WordPressDrag And Drop Multiple...7.5HIGHCross-Site Request Forgery Vulnerability in Advanced Contact Form 7 DB Plugin for WordPress
CVE-2026-0811WordPressAdvanced Contact Form ...5.4MEDIUMUnauthorized Data Access in Advanced Contact Form 7 DB Plugin for WordPress
CVE-2026-0814WordPressAdvanced Contact Form ...4.3MEDIUMAccess Control Vulnerability in ZealousWeb PayPal Payments Extension for WordPress
CVE-2026-39707WordPressAccept Paypal Payments...5.3MEDIUMRemote Code Execution in Spam Protect for Contact Form 7 Plugin by WordPress
CVE-2026-1540WordPressSpam Protect For Conta...👾🟡7.2HIGHUnauthorized Data Access in Contact Form Plugins for WordPress
CVE-2026-3831WordPressDatabase For Contact F...4.3MEDIUMAuthorization Flaw in CRM Perks WP Insightly for Popular WordPress Plugins
CVE-2026-32527WordPressWP Insightly For Conta...6.5MEDIUMPath Traversal Vulnerability in NYSL Spam Protect for Contact Form 7
CVE-2026-32496WordPressSpam Protect For Conta...6.8MEDIUMAccess Control Flaw in CRM Perks Mailchimp Integration for WordPress Plugins
CVE-2026-25430WordPressIntegration For Mailch...6.5MEDIUMCross-site Scripting Vulnerability in Themefic Ultimate Addons for Contact Form 7
CVE-2026-32460WordPressUltimate Addons For Co...6.5MEDIUMArbitrary File Upload Vulnerability in Drag and Drop Multiple File Upload Plugin for WordPress
CVE-2026-3459WordPressDrag And Drop Multiple...8.1HIGHPHP Object Injection Vulnerability in WordPress Plugin by Contact Form 7 and WPForms
CVE-2026-2599WordPressDatabase For Contact F...9.8CRITICALStored Cross-Site Scripting Vulnerability in Popular WordPress Plugins by WordPress
CVE-2026-2568WordPressWP Zendesk For Contact...7.2HIGHAccess Control Vulnerabilities in Themefic Ultimate Addons for Contact Form 7
CVE-2026-24945WordPressUltimate Addons For Co...5.3MEDIUMAuthorization Bypass in Contact Form 7 and Elementor Forms Plugin by WordPress
CVE-2026-0825WordPressDatabase For Contact F...5.3MEDIUM