Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
WordPress Plugin 'Contact Form 7' Allows Malicious File Uploads
BELL-CVE-2026-23237
Summary
The 'Contact Form 7' plugin in WordPress allows attackers to upload malicious files, potentially leading to code execution. This plugin is widely used, and exploiting this vulnerability could compromise many websites. Update the plugin to the latest version to fix this issue.
What to do
- Update bellsoft linux-lts to version 6.1.164-r0.
- Update bellsoft linux-lts to version 6.12.74-r0.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| bellsoft | linux-lts | > 6.1.163-r0 , <= 6.1.164-r0 | 6.1.164-r0 |
| bellsoft | linux-lts | > 6.12.73-r0 , <= 6.12.74-r0 | 6.12.74-r0 |
| bellsoft | linux-lts | > 6.12.71-r0 , <= 6.12.74-r0 | 6.12.74-r0 |
Original title
BELL-CVE-2026-23237
- https://docs.bell-sw.com/security/cves/CVE-2026-23237 Vendor Advisory
Published: 7 Mar 2026 · Updated: 13 Mar 2026 · First seen: 7 Mar 2026