CVE-2025-13717 | Ashish Ajani Contact Form vCard Generator Plugin up to 2.4 on WordPress wp_gvccf_check_download_request wp-gvc-cf-download-id authorization

A vulnerability categorized as problematic has been discovered in Ashish Ajani Contact Form vCard Generator Plugin up to 2.4 on WordPress. This vulnerability affects the function wp_gvccf_check_download_request. Executing a manipulation of the argument wp-gvc-cf-download-id can lead to missing authorization.

This vulnerability is tracked as CVE-2025-13717. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More