CVE-2025-13973 | StickEasy Protected Contact Form Plugin up to 1.0.1/1.0.2 on WordPress spcf-log.txt information disclosure

Inserito da Angelo Barbosa | Feb 13, 2026 | CVE

A vulnerability categorized as problematic has been discovered in StickEasy Protected Contact Form Plugin up to 1.0.1/1.0.2 on WordPress. Affected by this vulnerability is an unknown functionality of the file wp-content/uploads/stickeasy-protected-contact-form/spcf-log.txt. The manipulation results in information disclosure.

This vulnerability is identified as CVE-2025-13973. The attack can be executed remotely. There is not any exploit available.

CVE-2025-13973 | StickEasy Protected Contact Form Plugin up to 1.0.1/1.0.2 on WordPress spcf-log.txt information disclosure

Post correlati

CVE-2024-12854 | Garden Gnome Package Plugin up to 2.3.0 on WordPress unrestricted upload

CVE-2024-12372 | Rockwell Automation PowerMonitor 1000 Remote heap-based overflow (icsa-24-352-03)

CVE-2025-31273 | Apple tvOS Web memory corruption

CVE-2024-55078 | WukongCRM 11.3.3 /adminUser/updateImg unrestricted upload