Htplugins Ht Contact Form – Drag & Drop Form Builder For Wordpress
4 CVEs affecting Htplugins Ht Contact Form – Drag & Drop Form Builder For Wordpress. Latest disclosed: 2026-05-28. Critical: 3, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-7340 | Critical | 9.8 | 2025-07-15 | The HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder plugin for WordPress is vulnerable to arbitrary file uploads due to mis… |
CVE-2025-7360 | Critical | 9.1 | 2025-07-15 | The HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder plugin for WordPress is vulnerable to arbitrary file moving due to insu… |
CVE-2025-7341 | Critical | 9.1 | 2025-07-15 | The HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder plugin for WordPress is vulnerable to arbitrary file deletion due to in… |
CVE-2026-7052 | High | 7.2 | 2026-05-28 | The HT Contact Form – Drag & Drop Form Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'file_upload' parameter… |