cleantalk
Vulnerabilities and Security Researches

WP Subscription Forms – The Ultimate WordPress Subscription Form Plugin, CVE-2025-32692

CVE, Research URL

CVE-2025-32692

Home page URL

Security reports for WP Subscription Forms – The Ultimate WordPress Subscription Form Plugin

Application

WP Subscription Forms – The Ultimate WordPress Subscription Form Plugin

Published on
Apr 09, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WP Shuffle WP Subscription Forms allows PHP Local File Inclusion. This issue affects WP Subscription Forms: from n/a through 1.2.4.
Affected versions
Min -, max 1.2.4.
Status
vulnerable
Previous vulnerability researches
AI Search Bar (CVE-2025-31563) , Apr 04, 2025
New vulnerability
Responsive Blocks – WordPress Gutenberg Blocks (CVE-2025-39578) , Apr 18, 2025
Conditional Shipping for WooCommerce (CVE-2025-39564) , Apr 18, 2025
WPCOM Member (CVE-2025-39570) , Apr 18, 2025
ElementsReady Addons for Elementor (CVE-2025-39546) , Apr 18, 2025
WordPress Internal Link Optimiser (CVE-2025-39547) , Apr 18, 2025