cleantalk
Vulnerabilities and Security Researches

Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms, CVE-2026-25430

CVE, Research URL

CVE-2026-25430

Home page URL

Security reports for Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms

Application

Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms

Published on
Mar 25, 2026
Research Description
Missing Authorization vulnerability in CRM Perks Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms cf7-mailchimp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through <= 1.2.2.
Affected versions
max 1.2.2.
Status
vulnerable
Previous vulnerability researches
Additional Custom Product Tabs for WooCommerce (CVE-2025-58985) , Sep 10, 2025
Additional Custom Product Tabs for WooCommerce (CVE-2025-26749) , Apr 15, 2025
Custom Product Tabs For WooCommerce (CVE-2024-12721) , Dec 22, 2024
New vulnerability
Admin and Site Enhancements (ASE) (CVE-2026-32423) , Mar 29, 2026
Royal Elementor Addons and Templates (CVE-2026-28135) , Mar 29, 2026
Royal Elementor Addons and Templates (CVE-2025-13067) , Mar 29, 2026
Gift Up Gift Cards for WordPress and WooCommerce (CVE-2026-32412) , Mar 29, 2026
WP Telegram Widget and Join Link (CVE-2026-23807) , Mar 29, 2026