Support » Plugin: Contact Form 7 » Vulnerabilty ever used

Viewing 2 replies - 1 through 2 (of 2 total)
  • Yordan Soares

    (@yordansoares)

    Hello @david-82,

    This vulnerability only affects forms that use file upload fields. If you don’t have a file field in your forms, you have nothing to worry about.

    On the other hand, Contact Form 7 does not store files in the directory, but deletes them immediately after sending. So, in practice it’s not possible for a script to be executed because it’s sent and deleted immediately afterwards.

    Anyway, it’s recommended to upgrade to the latest release to increase the security of your forms even more.

    Best regards,
    Yordan.

    Thread Starter david-82

    (@david-82)

    Thank you SO MUCH!

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Vulnerabilty ever used’ is closed to new replies.