CVE-2025-64231

CVSS v3.1

9.9

Critical

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions RedefiningTheWeb WordPress Contact Form 7 PDF, Google Sheet & Database versions through 3.0.0

Description The software contains an unrestricted file upload issue that allows the use of malicious files. The issue affects the WordPress Contact Form 7 PDF, Google Sheet & Database plugin.

Recommendations Versions prior to and including 3.0.0 should be updated.

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2025-64231

Affected Products

Pdf For Contact Form 7

CVE-2025-64231

Weakness Enumeration

Related Identifiers

Affected Products

References · 5