{"uuid": "a7024a22-d156-4492-88a9-2eeac882a596", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-7384", "type": "seen", "source": "https://t.me/brutsecurity/2147", "content": "CVE-2025-7384: Critical PHP Object Injection in WordPress Plugin\n\nA critical vulnerability has been found in the Database for Contact Form 7, WPForms, and Elementor forms WordPress plugin. Since this is a backend-only plugin, it is not directly detectable through standard search dorks. Supported frontend plugins could help determine the scope. However, only about 1% of hosts identified this way are actually vulnerable.\n\n\ud83d\udd0d Netlas: https://nt.ls/Be3g6\n\u2139\ufe0f Advisory: https://nt.ls/RoI8t", "creation_timestamp": "2026-07-09T03:00:06.722004Z"}