Technology
Critical Vulnerability in Popular WordPress Plugin Exposes 70,000 Websites to Attack
2025-08-12
Author: Rajesh
A Major Security Flaw Uncovered!
A serious vulnerability has been discovered in a widely-used WordPress plugin that manages contact form submissions, putting over 70,000 websites at risk. Rated a staggering 9.8 out of 10 for severity, this flaw allows unauthenticated attackers to wreak havoc: from deleting files to launching denial of service attacks or even executing remote code.
The Culprit: Contact Form Entries Plugin
Known as the Database for Contact Form 7, WPForms, and Elementor Forms Plugin, this tool is essential for many site owners. It allows users to efficiently view, search, and manage contact form entries directly in their WordPress database.
Brasil (PT)
Canada (EN)
Chile (ES)
Česko (CS)
대한민국 (KO)
España (ES)
France (FR)
Hong Kong (EN)
Italia (IT)
日本 (JA)
Magyarország (HU)
Norge (NO)
Polska (PL)
Schweiz (DE)
Singapore (EN)
Sverige (SV)
Suomi (FI)
Türkiye (TR)
الإمارات العربية المتحدة (AR)