Contact Form 7 version 5.3.1 and below were found to be vulnerable to unrestricted file upload vulnerability while testing a customer’s website. Contact Form 7 version 5.3.2 with a fix was released on December 17, 2020. CVE-2020-35489 Summary...

Jinson Varghese Behanan
Information Security Analyst at ASTRA
Specializing in Vulnerability Assessment