WordPress Product Security Update Advisory (CVE-2025-6463)

Jul 09 2025

Overview

We have released a security update to fix vulnerabilities in our WordPress products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-6463

Forminator Forms Plugin Version: 1.44.2 and earlier

Resolved Vulnerabilities

Arbitrary file deletion vulnerability in the Forminator Forms plugin (CVE-2025-6463)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-6463

Forminator Forms Plugin Version: 1.44.3

References

[1] Forminator Forms – Contact Form, Payment Form & Custom Form Builder <= 1.44.2 – Unauthenticated Arbitrary File Deletion Triggered via Administrator Form Submission Deletion
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/forminator/forminator-forms-contact-form-payment-form-custom-form-builder-1442-unauthenticated-arbitrary-file-deletion-triggered-via-administrator-form-submission-deletion

WordPress Product Security Update Advisory (CVE-2025-6463)

MS Family July 2025 Routine Security Update Advisory

Cisco Product Security Update Advisory (CVE-2025-20309)

Tags:

MS Family July 2025 Routine Security Update Advisory

Cisco Product Security Update Advisory (CVE-2025-20309)