CVE-2025-8420 Multiple Plugins by emarket-design <= Multiple Versions - Unauthenticated Limited Remote Code Execution

Multiple plugins for WordPress by emarket-design with the 'emd-form-builder-lite' package are vulnerable to Remote Code Execution in various versions via the emdformbuilderlitepagenum function. This is due to the plugin not properly validating user input before using it as a function name. This...

CVE-2025-8420

CVE-2025-8420 affects the WordPress plugin “Request a Quote Form”. The vulnerability arises from improper validation of user input used as a function name within the emd_form_builder_lite_pagenum routine, allowing unauthenticated remote code execution on affected servers. Affected versions are re...

PT-2025-32081 · WordPress · Request A Quote Form

Name of the Vulnerable Software and Affected Versions: Request a Quote Form plugin for WordPress versions prior to 2.5.3 Description: The Request a Quote Form plugin for WordPress is susceptible to Remote Code Execution due to improper validation of user input before it is used as a function name...

WordPress plugin Request a Quote Form 安全漏洞

WordPress Request a Quote Form plugin is a plugin for collecting and managing quote requests with support for custom forms and centralized processing for quote requests for products, services or custom orders. A code execution vulnerability exists in the WordPress Request a Quote Form plugin that...