WordPress Plugin Vulnerabilities

Redirection for Contact Form 7 < 3.2.8 - Unauthenticated Arbitrary File Copy

Description

The plugin is vulnerable to arbitrary file uploads due to missing file type validation in the 'move_file_to_upload' function. This makes it possible for unauthenticated attackers to copy arbitrary files on the affected site's server. If 'allow_url_fopen' is set to 'On', it is possible to upload a remote file to the server.

Affects Plugins

Plugin icon
wpcf7-redirect
Fixed in 3.2.8

References

CVE
CVE-2025-14800
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/b249ec90-a364-4644-94fb-d42eb6cc4d9a

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
8.1 (high)

Miscellaneous

Original Researcher
LionTree
Verified
No
WPVDB ID
37f689e4-16e7-4ab7-86e2-a9f0b1675ed0

Timeline

Publicly Published
2025-12-20 (about 4 months ago)
Added
2025-12-21 (about 4 months ago)
Last Updated
2026-05-11 (about 1 day ago)

Other

Published
Title
Published
2025-06-06
Title
Profiler – What Slowing Down Your WP <= 1.0.0 - Missing Authentication to Unauthenticated Arbitrary Plugin Reactivation via State Restoration
Published
2025-12-31
Title
Countdowner for Elementor <= 1.0.4 - Missing Authorization
Published
2023-06-26
Title
AutomateWoo < 5.7.6 - Missing Authorization
Published
2026-01-30
Title
Fitness FSE <= 1.0.6 - Missing Authorization
Published
2025-11-25
Title
Elementor Website Builder < 3.33.1 - Missing Authorization