CVE-2025-7340
BaseFortify
Publication date: 2025-07-15
Last updated on: 2026-04-08
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| hasthemes | download_contact_form_7_widget_for_elementor_page_builder_\&_gutenberg_blocks | to 2.2.2 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-434 | The product allows the upload or transfer of dangerous file types that are automatically processed within its environment. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the HT Contact Form Widget plugin for WordPress, where the function responsible for handling temporary file uploads (temp_file_upload) lacks proper file type validation. This allows unauthenticated attackers to upload arbitrary files to the server. Because the plugin does not sufficiently check the file types before accepting uploads, attackers can potentially upload malicious files that could lead to remote code execution on the affected site.
How can this vulnerability impact me? :
The vulnerability can have severe impacts including allowing attackers to upload arbitrary files to your server without authentication. This can lead to remote code execution, meaning attackers could run malicious code on your server, potentially taking control of your website, stealing data, defacing your site, or using your server for further attacks.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection can involve checking for unexpected or suspicious files in the upload directory used by the plugin, typically located at wp_upload_dir()['basedir']/ht_form/temp. You can list files in this directory and look for unusual file types or recently created files. For example, on a Linux server, you can run commands like: 1) To list files with timestamps: `ls -la --time-style=full-iso /path/to/wp-content/uploads/ht_form/temp` 2) To find recently modified files (e.g., last 1 day): `find /path/to/wp-content/uploads/ht_form/temp -type f -mtime -1` 3) To check for PHP or other executable files: `find /path/to/wp-content/uploads/ht_form/temp -type f \( -name "*.php" -o -name "*.phtml" \)` Additionally, monitoring web server logs for suspicious POST requests to the plugin's upload endpoints may help detect exploitation attempts. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include: 1) Updating the HT Contact Form Widget plugin to a version later than 2.2.1 where the vulnerability is fixed. 2) If an update is not immediately available, restrict access to the upload directories by applying proper file permissions and web server rules to prevent execution of uploaded files. 3) Monitor and clean the temporary upload directory regularly to remove any suspicious files. 4) Disable or restrict the vulnerable file upload functionality if possible until a patch is applied. 5) Implement Web Application Firewall (WAF) rules to block malicious upload attempts targeting this plugin. [1]