cleantalk
Vulnerabilities and Security Researches

WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms – CRM, Bigin, CVE-2025-49330

CVE, Research URL

CVE-2025-49330

Home page URL

Security reports for WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms – CRM, Bigin

Application

WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms – CRM, Bigin

Published on
Jun 17, 2025
Research Description
Deserialization of Untrusted Data vulnerability in CRM Perks Integration for Contact Form 7 and Zoho CRM, Bigin cf7-zoho allows Object Injection.This issue affects Integration for Contact Form 7 and Zoho CRM, Bigin: from n/a through <= 1.3.0.
Affected versions
max 1.3.1.
Status
vulnerable
Previous vulnerability researches
Stripe Express (4b8502a4cf5209c95f7abee1405df2d2eac8a87d) , Jun 07, 2024
Stripe Express (CVE-2026-8893) , Jun 07, 2026
New vulnerability
Instant Page Load (CVE-2023-33999) , Jun 13, 2026
Elementor Website Builder – More than Just a Page Builder (CVE-2025-67588) , Jun 13, 2026
Elementor Website Builder – More than Just a Page Builder (CVE-2025-11220) , Jun 13, 2026
Floating Social Share Icons and Social Share buttons &#8211; Next Previous Post Links &#8211; FL (CVE-2023-33999) , Jun 13, 2026
URL Shortify &#8211; Simple, Powerful and Easy URL Shortener Plugin For WordPress (CVE-2023-33999) , Jun 13, 2026