CVE-2025-9189: Unauthenticated Payment Bypass in Contact Form 7 PayPal & Stripe Add-on

www.wordfence.com 2026-05-29翻訳準備中…中国語で表示中中国語 →English →

Security AdvisoryCVE-2025-9189MediumContact Form 7

Affected:

Contact Form 7 – PayPal & Stripe Add-on <= 2.4.9

Fixed in:

2.4.10

参照 CVE: CVE-2026-9189 · 5.3

文章内图片已隐藏以节省流量 · 升级 Pro 后可见图片及离线存档

本文由本平台从 www.wordfence.com 自动抓取，经 LLM 流水线清洗、双语翻译。版权归原作者。查看原文。

このソースからの他の記事

Equalize Digital Accessibility Checker <=1.42.0 Missing Authorization Vulnerability (CVE-2026-9015) 2026-05-30 Frontend Admin <= 3.28.28 Authenticated SQL Injection in 'order' Parameter (CVE-2026-10039) 2026-05-30 WordPress Photo Gallery by 10Web Authenticated SQL Injection via order_by (CVE-2026-7048) 2026-05-29 CVE-2025-14481 Yoast SEO IDOR Sensitive Information Exposure 2026-05-29 CVE-2026-6275: WordPress StatCounter <= 2.1.1 Authenticated Stored XSS 2026-05-29

离线存档

离线截图 & PDF 为 Pro 专属