CVE-2025-2801 | Create Custom Forms with a Smart Form Plugin for Smart Businesses Plugin Shortcode do_shortcode Remote Code Execution

A vulnerability was found in Create Custom Forms with a Smart Form Plugin for Smart Businesses Plugin up to 1.2.4 on WordPress. It has been declared as critical. This vulnerability affects the function do_shortcode of the component Shortcode Handler. The manipulation leads to Remote Code Execution.

This vulnerability was named CVE-2025-2801. The attack can be initiated remotely. There is no exploit available.VulDB Recent EntriesRead More