A security update has been released for the plugin, Contact Form 7, one of the most popular WordPress plugins with more than 5 million users.
The security update is meant to address a vulnerability with the file upload functionality in Contact Form 7. While the vulnerability itself is not easily exploitable, but with the popularity, it may be inevitable for attackers to target this vulnerability.
We strongly recommend an immediate update to version 5.3.2 to ensure your website is kept secure. If you aren’t using the file upload functionality, this issue doesn’t apply but it is still recommended to keep the plugin updated.
For more information, please check the official public release.
If you have questions, don’t hesitate to contact our support team.