CVE-2025-6691 | SureForms Plugin up to 1.7.3 on WordPress delete_entry_files file inclusion (EUVD-2025-20783)
A vulnerability classified as critical has been found in SureForms Plugin up to 1.7.3 on WordPress. Affected is the function delete_entry_files. The manipulation leads to file inclusion.
This vulnerability is traded as CVE-2025-6691. It is possible to launch the attack remotely. There is no exploit available.