Extensions For CF7

HT Plugins

Developer

3.4.3

Latest version

6,000

Installations

No date

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Security Contributors

Vulnerability history

0 present

5 patched

2 Mitigation rules

Insecure Direct Object References (IDOR) vulnerability
<= 3.4.0
23/01/2026
Unauthenticated Arbitrary File Deletion Triggered via Admin Form Submission Deletion vulnerability
<= 3.2.8
21/07/2025
Server Side Request Forgery (SSRF) vulnerability
<= 3.2.0
24/01/2025
Unauthenticated Cross Site Scripting (XSS) vulnerability
<= 3.0.6
15/03/2024
Cross Site Request Forgery (CSRF) vulnerability
<= 2.0.8
20/01/2023