CVE-2025-6742 | SureForms Plugin up to 1.7.3 on WordPress file_exists Remote Code Execution

Inserito da Angelo Barbosa | Lug 8, 2025 | CVE

A vulnerability classified as critical was found in SureForms Plugin up to 1.7.3 on WordPress. Affected by this vulnerability is the function file_exists. The manipulation leads to Remote Code Execution.

This vulnerability is known as CVE-2025-6742. The attack can be launched remotely. There is no exploit available.

CVE-2025-6742 | SureForms Plugin up to 1.7.3 on WordPress file_exists Remote Code Execution

Post correlati

CVE-2024-1711 | Mediavine Create Plugin up to 1.9.4 on WordPress id sql injection

CVE-2023-34053 | VMware Spring Framework up to 6.0.13 HTTP Rrequest denial of service

CVE-2024-13709 | linearoy Linear Plugin up to 2.8.1 on WordPress cross-site request forgery

CVE-2023-49163 | Michael Winkler teachPress Plugin up to 9.0.5 on WordPress cross-site request forgery