cleantalk
Vulnerabilities and Security Researches

Billplz Addon for Contact Form 7, CVE-2025-31007

CVE, Research URL

CVE-2025-31007

Home page URL

Security reports for Billplz Addon for Contact Form 7

Application

Billplz Addon for Contact Form 7

Published on
Aug 14, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alvind Billplz Addon for Contact Form 7 allows Reflected XSS. This issue affects Billplz Addon for Contact Form 7: from n/a through 1.2.0.
Affected versions
Min -, max 1.2.1.
Status
vulnerable
Previous vulnerability researches
Inpersttion For Theme (CVE-2025-8905) , Aug 16, 2025
New vulnerability
Surbma | Recent Comments Shortcode (CVE-2025-7649) , Aug 17, 2025
Print My Blog – Print, PDF, & eBook Converter WordPress Plugin (CVE-2025-54740) , Aug 17, 2025
MDTF – Meta Data and Taxonomies Filter (CVE-2025-54707) , Aug 17, 2025
StoryChief (CVE-2025-7441) , Aug 17, 2025
Woocommerce Blocks – Woolook (CVE-2024-8393) , Aug 17, 2025