CVE-2025-8280 | Contact Form 7 reCAPTCHA Plugin up to 1.2.0 on WordPress REQUEST_URI cross site scripting

September 12, 2025 Yanac

A vulnerability has been found in Contact Form 7 reCAPTCHA Plugin up to 1.2.0 on WordPress and classified as problematic. This impacts an unknown function. Performing manipulation of the argument REQUEST_URI results in cross site scripting.

This vulnerability is cataloged as CVE-2025-8280. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More