cleantalk
Vulnerabilities and Security Researches

Pay with Contact Form 7, CVE-2025-52777

CVE, Research URL

CVE-2025-52777

Home page URL

Security reports for Pay with Contact Form 7

Application

Pay with Contact Form 7

Published on
Jul 16, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cmsMinds Pay with Contact Form 7 allows Reflected XSS. This issue affects Pay with Contact Form 7: from n/a through 1.0.4.
Affected versions
Min -, max 1.0.4.
Status
vulnerable
Previous vulnerability researches
BuddyPress & BuddyBoss Member Profile Forms (053af10176d1dc3feead6bb1c45f871d35190797) , Jun 07, 2024
New vulnerability
WP Pipes (CVE-2025-28982) , Jul 19, 2025
LightBox Block (CVE-2025-54051) , Jul 19, 2025
Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal (CVE-2025-6043) , Jul 19, 2025
Ruven Themes: Shortcodes (CVE-2025-7648) , Jul 19, 2025
Torod – The smart shipping and delivery portal for e-shops and retailers (CVE-2025-30936) , Jul 19, 2025