CVE-2025-12352 | Rocketgenius Gravity Forms Plugin up to 2.9.20 on WordPress copy_post_image unrestricted upload

A vulnerability classified as critical has been found in Rocketgenius Gravity Forms Plugin up to 2.9.20 on WordPress. Affected by this vulnerability is the function copy_post_image. The manipulation leads to unrestricted upload.

This vulnerability is listed as CVE-2025-12352. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More