CVE-2025-7696

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
N/A
Affected
1
PROJECT

Description

The Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.2.3 via deserialization of untrusted input within the verify_field_val() function. This makes it possible for unauthenticated attackers to inject a PHP Object. The additional presence of a POP chain in the Contact Form 7 plugin, which is likely to be used alongside, allows attackers to delete arbitrary files, leading to a denial of service or remote code execution when the wp-config.php file is deleted.

Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms
Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms
<p>Contact Form 7 Pipedrive extension sends form submissions from <a href="https://wordpress.org/plugins/contact-form-7/" rel="ugc">Contact Form 7</a>, <a href="https://wordpress.org/plugins/wpforms-lite/" rel="ugc">WPforms</a>, <a href="https://wordpress.org/plugins/elementor/" rel="ugc">Elementor Forms</a>, <a href="https://wordpress.org/plugins/ninja-forms/" rel="ugc">Ninja Forms</a>, <a href="https://wordpress.org/plugins/formidable/" rel="ugc">Formidable Forms</a>, <a href="https://wordpress.org/plugins/contact-form-entries/" rel="ugc">Contact Form Entries</a> and many other popular contact form plugins to Pipedrive when anyone submits a form. Learn more at <a href="https://www.crmperks.com/plugins/contact-form-plugins/contact-form-pipedrive-plugin/?utm_source=wordpress&amp;utm_medium=directory&amp;utm_campaign=pipedrive_readme" rel="nofollow ugc">crmperks.com</a></p> <h3>Contact form 7 Pipedrive integration</h3> <ul> <li>Go to &#8220;Pipedrive Accounts&#8221; tab then add new account.</li> <li>Go to &#8220;Pipedrive Feeds&#8221; tab then create a new feed.</li> <li>Map required pipedrive fields to contact form fields.</li> <li>Send your test entry to pipedrive by clicking &#8220;send to pipedrive&#8221; button.</li> <li>Go to &#8220;Pipedrive Logs&#8221; tab and verify status of previously sent entry.</li> </ul> <p><strong>Connect Pipedrive CRM account</strong></p> <p>Connect any contact form 7 to Pipedrive account by simply entering Pipedrive API key. Additionally, you can connect multiple Pipedrive accounts to Contact Form 7.</p> <p><strong>Map Pipedrive fields</strong></p> <p>Select any pipedrive Object then Map pipedrive Object fields to any contact form 7 fields. Plugin displays all pipedrive fields.</p> <p><strong>Filter contact form 7 submissions</strong></p> <p>Filter contact form 7 submissions sent to Pipedrive based on user input. For example , send those customers to Pipedrive who check &#8220;Subscribe to newsletter&#8221; checkbox.</p> <p><strong>Manually send to Pipedrive</strong></p> <p>Send contact form 7 submissions to Pipedrive when someone submits a contact form. You can manually send contact form 7 submissions to Pipedrive by clicking &#8220;Send to Pipedrive&#8221; button.</p> <p><strong>Pipedrive logs</strong></p> <p>View a detailed log of each contact form 7 submission Whether sent or not sent to Pipedrive and easily resend contact form 7 submission to Pipedrive.</p> <p><strong>Send Data As Pipedrive Contact Notes</strong></p> <p>Send one to many contact form 7 form fields as Pipedrive Object notes when someone submits a contact form on your site.</p> <p><strong>Create Or Update Contact in Pipedrive</strong></p> <p>If a Contact already exists in Pipedrive , update it otherwise create a new Contact in Pipedrive.</p> <blockquote> <p><strong>Premium Version Features.</strong></p> <p>Following features are available only in premium version <a href="https://www.crmperks.com/plugins/contact-form-plugins/contact-form-pipedrive-plugin/?utm_source=wordpress&amp;utm_medium=directory&amp;utm_campaign=pipedrive_readme" rel="nofollow ugc">Contact Form 7 Pipedrive Pro</a>.</p> <ul> <li>Phone number field, Marketing Status field and all custom fields of Pipedrive.</li> <li>Create Leads in Pipedrive CRM.</li> <li>Create Organizations and Deals in Pipedrive.</li> <li>Assign Organizations and Deals to Contacts in Pipedrive.</li> <li>Assign Owner to Contacts, Organizations and Deals in Pipedrive.</li> <li>Google Analytics Parameters and Geolocation of a visitor who submitted the form.</li> <li>Lookup lead&#8217;s email and phone using email and phone lookup apis.</li> <li>20+ premium addons</li> </ul> </blockquote> <h3>Need Pipedrive Plugin for Gravity Forms ?</h3> <p>We have a separate addon for integrating Gravity Forms and Pipedrive CRM <a href="https://wordpress.org/plugins/integration-for-gravity-forms-and-pipedrive/" rel="ugc">Gravity Forms Pipedrive</a></p> <h3>Need Pipedrive Plugin for Woocommerce ?</h3> <p>We have Pipedrive add-on for Woocommerce. <a href="https://www.crmperks.com/plugins/woocommerce-plugins/woocommerce-pipedrive-plugin/?utm_source=wordpress&amp;utm_medium=directory&amp;utm_campaign=cf7_pipedrive_CRM_readme" rel="nofollow ugc">Woocommerce Pipedrive Plugin</a></p> <h3>Want to send data to crm</h3> <p>We have Premium Extensions for 20+ CRMs.<a href="https://www.crmperks.com/plugin-category/contact-form-plugins/?utm_source=wordpress&amp;utm_medium=directory&amp;utm_campaign=pipedrive_readme" rel="nofollow ugc">View All CRM Extensions</a></p>
WordPress Plugin DirectoryWordPress Plugin Directory
28.9K