Open Redirect Vulnerability in CRM Perks WP Gravity Forms Constant Contact Plugin

CVE-2025-30954

What is CVE-2025-30954?

The WP Gravity Forms Constant Contact Plugin contains an open redirect vulnerability that allows attackers to manipulate URLs, redirecting users to untrusted sites. This can lead to phishing attacks, where unsuspecting users may be tricked into entering sensitive information on malicious sites, posing significant security risks to users and organizations utilizing the plugin. It is crucial for users of the plugin, particularly those running versions prior to 1.1.0, to take immediate action to mitigate this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References