cleantalk
Vulnerabilities and Security Researches

Message Filter for Contact Form 7, CVE-2025-46252

CVE, Research URL

CVE-2025-46252

Home page URL

Security reports for Message Filter for Contact Form 7

Application

Message Filter for Contact Form 7

Published on
Apr 22, 2025
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in kofimokome Message Filter for Contact Form 7 allows SQL Injection. This issue affects Message Filter for Contact Form 7: from n/a through 1.6.3.2.
Affected versions
Min -, max 1.6.33.
Status
vulnerable
Previous vulnerability researches
WP Import Export Lite (CVE-2022-0236) , Jun 07, 2024
WP Import Export Lite (CVE-2024-31308) , Jun 07, 2024
WP Import Export Lite (CVE-2025-2839) , Apr 23, 2025
New vulnerability
Flynax Bridge (CVE-2025-3604) , Apr 25, 2025
Verification SMS with TargetSMS (CVE-2025-3776) , Apr 25, 2025
SKT Blocks – Gutenberg based Page Builder (CVE-2025-46235) , Apr 24, 2025
Message Filter for Contact Form 7 (CVE-2025-46252) , Apr 24, 2025
Custom Related Posts (CVE-2025-46227) , Apr 24, 2025