CVE-2025-14800 | Themeisle Redirection for Contact Form 7 Plugin up to 3.2.7 on WordPress move_file_to_upload unrestricted upload

Inserito da Angelo Barbosa | Dic 21, 2025 | CVE

A vulnerability labeled as critical has been found in Themeisle Redirection for Contact Form 7 Plugin up to 3.2.7 on WordPress. This issue affects the function move_file_to_upload. The manipulation results in unrestricted upload.

This vulnerability is cataloged as CVE-2025-14800. The attack may be launched remotely. There is no exploit available.

CVE-2025-14800 | Themeisle Redirection for Contact Form 7 Plugin up to 3.2.7 on WordPress move_file_to_upload unrestricted upload

Post correlati

CVE-2024-51060 | Project Worlds Online Admission System 1.0 index.php a_id sql injection

CVE-2024-34468 | Rukovoditel up to 3.5.2 My Page user_photo cross site scripting

CVE-2024-41043 | Linux Kernel up to 6.9.9 nfnetlink_queue Privilege Escalation (86858da8335d/631a4b3ddc78)

CVE-2024-3532 | Campcodes Complete Online Student Management System 1.0 attendance_view.php FirstRecord cross site scripting