Metrics
Affected Vendors & Products
Solution
Update the WordPress Contact Form By Mega Forms plugin to the latest available version (at least 1.6.2).
Workaround
No workaround given by the vendor.
Wed, 03 Sep 2025 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Contact Form By Mega Forms Project
Contact Form By Mega Forms Project contact Form By Mega Forms Wordpress Wordpress wordpress |
|
Vendors & Products |
Contact Form By Mega Forms Project
Contact Form By Mega Forms Project contact Form By Mega Forms Wordpress Wordpress wordpress |
Wed, 03 Sep 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 03 Sep 2025 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Missing Authorization vulnerability in Ali Khallad Contact Form By Mega Forms allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Contact Form By Mega Forms: from n/a through 1.6.1. | |
Title | WordPress Contact Form By Mega Forms Plugin <= 1.6.1 - Broken Access Control Vulnerability | |
Weaknesses | CWE-862 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2025-09-03T18:17:56.364Z
Reserved: 2025-09-03T09:03:12.362Z
Link: CVE-2025-58639

Updated: 2025-09-03T18:17:52.664Z

Status : Awaiting Analysis
Published: 2025-09-03T15:15:47.360
Modified: 2025-09-04T15:35:29.497
Link: CVE-2025-58639

No data.

Updated: 2025-09-03T20:26:42Z