Lucene search
K

4 matches found

NVD
NVD
•added 2025/07/15 5:15 a.m.•14 views

CVE-2025-7340

The HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the tempfileupload function in all versions up to, and including, 2.2.1. This makes it possible for...

9.8CVSS0.0161EPSS
Exploits2References3
Vulnrichment
Vulnrichment
•added 2025/07/15 4:23 a.m.•8 views

CVE-2025-7340 HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. <= 2.2.1 - Unauthenticated Arbitrary File Upload

The HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the tempfileupload function in all versions up to, and including, 2.2.1. This makes it possible for...

9.8CVSS6.7AI score0.0161EPSS
Exploits2References3
GithubExploit
GithubExploit
•added 2025/07/14 11:27 p.m.•523 views

Exploit for Unrestricted Upload of File with Dangerous Type in Hasthemes Download_Contact_Form_7_Widget_For_Elementor_Page_Builder_\&_Gutenberg_Blocks

🚨 HT Contact Form Widget to execute system commands. āœ… Exam...

9.8CVSS6.8AI score0.0161EPSS
Exploits2
Patchstack
Patchstack
•added 2025/07/14 9:14 p.m.•11 views

WordPress HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. plugin <= 2.2.1 - Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Arbitrary File Upload vulnerability discovered by vgo0 in WordPress Plugin HT Contact Form 7 versions = 2.2.1...

9.8CVSS6.9AI score0.0161EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder