Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
WordPress Plugin 'Contact Form 7' Unauthenticated File Upload
MINI-gp34-c9mp-678r
Summary
A security issue in the WordPress plugin 'Contact Form 7' allows attackers to upload malicious files without authentication. This can lead to unauthorized access to sensitive data or website takeover. To fix, update the plugin to the latest version or remove it if not in use.
Original title
MINI-gp34-c9mp-678r
Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026