cleantalk
Vulnerabilities and Security Researches

Abandoned Contact Form 7, CVE-2025-52817

CVE, Research URL

CVE-2025-52817

Home page URL

Security reports for Abandoned Contact Form 7

Application

Abandoned Contact Form 7

Published on
Jun 27, 2025
Research Description
Missing Authorization vulnerability in ZealousWeb Abandoned Contact Form 7 allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Abandoned Contact Form 7: from n/a through 2.0.
Affected versions
Min -, max 2.0.
Status
vulnerable
Previous vulnerability researches
WPExperts Square For GiveWP (CVE-2024-13713) , Feb 22, 2025
WPExperts Square For GiveWP (CVE-2024-47338) , Sep 30, 2024
New vulnerability
Abandoned Contact Form 7 (CVE-2025-52817) , Jun 29, 2025
Simple Payment (CVE-2025-6688) , Jun 29, 2025
SiteGuard WP Plugin , Jun 28, 2025
DirectIQ Email Marketing (CVE-2025-52829) , Jun 28, 2025
e.nigma buttons (CVE-2025-5535) , Jun 28, 2025