CVE-2025-6220 | Ultra Addons for Contact Form 7 Plugin up to 3.5.12 on WordPress save_options unrestricted upload

Inserito da Angelo Barbosa | Giu 18, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Ultra Addons for Contact Form 7 Plugin up to 3.5.12 on WordPress. Affected by this issue is the function save_options. The manipulation leads to unrestricted upload.

This vulnerability is handled as CVE-2025-6220. The attack may be launched remotely. There is no exploit available.

CVE-2025-6220 | Ultra Addons for Contact Form 7 Plugin up to 3.5.12 on WordPress save_options unrestricted upload

Post correlati

CVE-2024-54008 | HPE Aruba Networking AirWave Management Platform up to 8.3.0.3 CLI command injection

CVE-2024-8458 | PLANET Technology GS-4210-24P2S Hardware 3.0 cross-site request forgery

CVE-2024-7931 | SourceCodester Online Graduate Tracer System 1.0 view_csprofile.php id sql injection

CVE-2024-5405 | Wtriple WinNMP 19.02 via /tools/redis.php k/hash/key/p cross site scripting