wordpress_contact_form_7_database_addon_cfdb7_by_arshid CVE 脆弱性と CVE 一覧(1)

製品(CPE): — CVE 件数: 1

wordpress_contact_form_7_database_addon_cfdb7_by_arshid 脆弱性概要

This page aggregates publicly disclosed CVE and security risk information related to wordpress_contact_form_7_database_addon_cfdb7_by_arshid, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.

脆弱性分布の推移(直近24か月)

表示中 11 / 1 CVE 件数
«« 先頭 « 前へ 1 / 1 次へ »
CVE 概要 ソース CVSS 最大値 EPSS(%) 公開 更新
CVE-2025-4665 WordPress plugin Contact Form CFDB7 versions up to and including 1.3.2 are affected by a pre-authentication SQL injection vulnerability that cascades into insecure deserialization (PHP Object Injection). The weakness arises due to insufficient validation of user input in plugin endpoints, allowing crafted input to influence backend queries in unexpected ways. Using specially crafted payloads, this can escalate into unsafe deserialization, enabling arbitrary object injection in PHP. Although the [email protected] 9.6 0.27% 2025-10-28 2026-06-17
«« 先頭 « 前へ 1 / 1 次へ »
cvelogic Threat Intelligence