PT-2025-38866 · WordPress · Cf7 Submissions
Denver Jackson
·
Published
2025-09-22
·
Updated
2025-09-22
·
CVE-2025-58016
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
CF7 Submissions versions through 0.26
Description
An authorization issue exists in CF7 Submissions due to incorrectly configured access control security levels. This allows exploitation of the system.
Recommendations
Update CF7 Submissions to a version later than 0.26.
Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cf7 Submissions