Vulnerabilities and security researches forbillplz-for-contact-form-7 billplz-for-contact-form-7

Aug 16, 2025

CVE, Research URL: CVE-2025-31007
Home page URL: Security reports for Billplz Addon for Contact Form 7
Application: Billplz Addon for Contact Form 7
Date: Aug 14, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alvind Billplz Addon for Contact Form 7 allows Reflected XSS. This issue affects Billplz Addon for Contact Form 7: from n/a through 1.2.0.
Affected versions: Min -, max -.
Status: vulnerable