Critical Vulnerability Disclosed on WordPress Custom Contact Forms Plugin

If you are a using WordPress Custom Contact Forms plugin, you need to update it immediately.

WHMCS Complete Billing and Support

There was a critical vulnerability existed in WordPress Custom Contact Forms plugin that allows an attacker to download and modify your database remotely (no authentication required).

WordPress Custom Contact form

Who’s affected?

The plugin is downloaded more than 600,000+ and the vulnerability affects the every websites which are using plugin version 5.1.0.3 and lower.

How to fix?

There is an update available for WordPress Custom Contact Forms Plugin version 5.1.0.4. You should upgrade your plugin immediately to latest version.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.