CVE-2025-28864
CVE-2025-28864 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Builder for Contact Form 7 by Webconstruct . The vulnerability affects plugin versions up to and including 1.2.2 (reported as affected “from n/a through 1.2.2”). Public sources in the Connected Docu...