CVE-2020-35489

<p>Contact Form 7 is a plugin designed to be a practical tool for all WordPress users who embrace the philosophy of free and open source software. It employs sophisticatedly modularized architecture and its original <a href="https://contactform7.com/schema-woven-validation/" rel="nofollow ugc">Schema-Woven Validation</a> technology.</p> <h4>Docs and support</h4> <p>You can find <a href="https://contactform7.com/docs/" rel="nofollow ugc">docs</a>, <a href="https://contactform7.com/faq/" rel="nofollow ugc">FAQ</a> and more detailed information about Contact Form 7 on <a href="https://contactform7.com/" rel="nofollow ugc">contactform7.com</a>. When you cannot find the answer to your question on the FAQ or in any of the documentation, check the <a href="https://wordpress.org/support/plugin/contact-form-7/" rel="ugc">support forum</a> on WordPress.org. If you cannot locate any topics that pertain to your particular issue, post a new topic for it.</p> <h4>Contact Form 7 needs your support</h4> <p>It is hard to continue to maintain this plugin without support from users like you. There are several ways for you to <a href="https://contactform7.com/contributing/" rel="nofollow ugc">contribute to the project</a>: testing, coding, translating it into your local languages, helping other users, financial donations, etc, etc. We equally welcome you regardless of the way you contribute.</p> <h4>Privacy notices</h4> <p>With the default configuration, this plugin, in itself, does not:</p> <ul> <li>track users by stealth;</li> <li>write any user personal data to the database;</li> <li>send any data to external servers;</li> <li>use cookies.</li> </ul> <p>If you activate certain features in this plugin, the contact form submitter&#8217;s personal data, including their IP address, may be sent to the service provider. Thus, confirming the provider&#8217;s privacy policy is recommended. These features include:</p> <ul> <li>reCAPTCHA (<a href="https://policies.google.com/?hl=en" rel="nofollow ugc">Google</a>)</li> <li>Akismet (<a href="https://automattic.com/privacy/" rel="nofollow ugc">Automattic</a>)</li> <li><a href="https://www.constantcontact.com/legal/privacy-center" rel="nofollow ugc">Constant Contact</a></li> <li><a href="https://www.brevo.com/legal/privacypolicy/" rel="nofollow ugc">Brevo</a></li> <li><a href="https://stripe.com/privacy" rel="nofollow ugc">Stripe</a></li> <li>Turnstile (<a href="https://www.cloudflare.com/turnstile-privacy-policy/" rel="nofollow ugc">Cloudflare</a>)</li> </ul>