CVE-2025-12974 | Rocketgenius Gravity Forms Plugin up to 2.9.21.1 on WordPress Legacy Chunked Upload unrestricted upload

A vulnerability, which was classified as critical, has been found in Rocketgenius Gravity Forms Plugin up to 2.9.21.1 on WordPress. This issue affects some unknown processing of the component Legacy Chunked Upload. Performing manipulation results in unrestricted upload.

This vulnerability is known as CVE-2025-12974. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More