CVE-2025-7340

CRITICAL

Hasthemes Download Contact Form 7 Wid... - Unrestricted File Upload

Title source: rule

Description

The HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the temp_file_upload function in all versions up to, and including, 2.2.1. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

Exploits (3)

nomisec WORKING POC 7 stars

by Nxploited · poc

https://github.com/Nxploited/CVE-2025-7340

View Code ZIP pw:eip

nomisec WORKING POC

by Kai-One001 · poc

https://github.com/Kai-One001/WordPress-HT-Contact-CVE-2025-7340-RCE

View Code ZIP pw:eip

github WORKING POC

by Boshe99 · pythonpoc

https://github.com/Boshe99/CVE-Exploits/tree/main/CVE-2025-7340

View Code ZIP pw:eip

References (3)

[Product] https://plugins.trac.wordpress.org/browser/ht-contactform/trunk/admin/Includes/Services/FileManager.php#L86

[Patch] https://plugins.trac.wordpress.org/changeset/3326887/ht-contactform/trunk/admin/Includes/Services/FileManager.php?contextall=1&old=3316109&old_path=%2Fht-contactform%2Ftrunk%2Fadmin%2FIncludes%2FServices%2FFileManager.php

[Third Party Advisory] https://www.wordfence.com/threat-intel/vulnerabilities/id/f0cb666b-bfab-492f-a74e-11dc9b171136?source=cve

Scores

CVSS v3 9.8

EPSS 0.0074

EPSS Percentile 72.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-434

Status published

Affected Products (1)

hasthemes/download_contact_form_7_widget_for_elementor_page_builder_\&_gutenberg_blocks < 2.2.2

Timeline

Published Jul 15, 2025

Tracked Since Feb 18, 2026