EUVD-2025-23716

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Request a Quote Form plugin for WordPress is vulnerable to Remote Code Execution in versions <= 2.5.2

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2025-8420	6 Aug 202503:01	–	circl
CNNVD	WordPress plugin Request a Quote Form 安全漏洞	6 Aug 202500:00	–	cnnvd
CNVD	WordPress Request a Quote Form plugin code execution vulnerability	18 Aug 202500:00	–	cnvd
CVE	CVE-2025-8420	6 Aug 202502:24	–	cve
Cvelist	CVE-2025-8420 Multiple Plugins by emarket-design <= Multiple Versions - Unauthenticated Limited Remote Code Execution	6 Aug 202502:24	–	cvelist
NVD	CVE-2025-8420	6 Aug 202503:15	–	nvd
Patchstack	WordPress Request a Quote Form plugin <= 2.5.2 - Unauthenticated Limited Remote Code Execution vulnerability	5 Aug 202522:59	–	patchstack
Positive Technologies	PT-2025-32081 · WordPress · Request A Quote Form	6 Aug 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-8420	8 Aug 202502:31	–	redhatcve
Vulnrichment	CVE-2025-8420 Multiple Plugins by emarket-design <= Multiple Versions - Unauthenticated Limited Remote Code Execution	6 Aug 202502:24	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "fcb72636-3d82-3e94-8dff-4dbb36df7cba",
        "vendor": {
          "name": "emarket-design"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "a75d13d4-a7f6-3783-b3cf-d948f4f224ca",
        "product": {
          "name": "Request a Quote Form Plugin – Price Quote Request Management Made Easy"
        },
        "product_version": "* ≤2.5.2"
      }
    ]
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/601aa2b5-aeac-49bc-960d-4b4ff83e9229
plugins	www.plugins.trac.wordpress.org/changeset

03 Oct 2025 20:07Current

4.5Medium risk

Vulners AI Score4.5

CVSS 3.18.1

EPSS0.00818

SSVC