cleantalk
Vulnerabilities and Security Researches

Submission DOM tracking for Contact Form 7, CVE-2025-47626

CVE, Research URL

CVE-2025-47626

Home page URL

Security reports for Submission DOM tracking for Contact Form 7

Application

Submission DOM tracking for Contact Form 7

Published on
May 07, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in apasionados Submission DOM tracking for Contact Form 7 allows Stored XSS. This issue affects Submission DOM tracking for Contact Form 7: from n/a through 2.0.
Affected versions
Min -, max 2.0.
Status
vulnerable
Previous vulnerability researches
Search Exclude (CVE-2025-2821) , May 07, 2025
Search Exclude (CVE-2019-15895) , Jun 06, 2024
Search Exclude (CVE-2022-36282) , Jun 06, 2024
New vulnerability
Top 10 – WordPress Popular posts by WebberZone (CVE-2025-47509) , May 09, 2025
Easy Replace Image (CVE-2025-47483) , May 09, 2025
Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress (CVE-2025-47520) , May 09, 2025
GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress (CVE-2025-47508) , May 09, 2025
Simple calendar for Elementor (CVE-2025-47542) , May 09, 2025