CVE-2025-6212 | Ultra Addons for Contact Form 7 Plugin up to 3.5.11/3.5.19 on WordPress Database Module ajax_get_table_data cross site scripting

Inserito da Angelo Barbosa | Giu 26, 2025 | CVE

A vulnerability was found in Ultra Addons for Contact Form 7 Plugin up to 3.5.11/3.5.19 on WordPress. It has been classified as problematic. This affects the function ajax_get_table_data of the component Database Module. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-6212. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-6212 | Ultra Addons for Contact Form 7 Plugin up to 3.5.11/3.5.19 on WordPress Database Module ajax_get_table_data cross site scripting

Post correlati

CVE-2024-38734 | SpreadsheetConverter Import Spreadsheets from Microsoft Excel Plugin up to 10.1.4 on WordPress unrestricted upload

CVE-2024-45720 | Apache Subversion up to 1.14.3 on Windows Command Line argument injection

CVE-2024-33595 | Jewel Theme Master Addons for Elementor Plugin up to 2.0.5.4.1 on WordPress authorization

CVE-2024-49623 | Hasan Movahed Duplicate Title Validate Plugin up to 1.0 on WordPress sql injection