Contact Manager

Vulnerabilities 4Slug contact-managerLatest version 9.1.1WordPress.org →

Minimum safe version

9.1.1

Update to 9.1.1 or later to address 3 fixable vulnerabilities

Latest available9.1.1 ⚠ 1 vulnerability has no fix
High 8.8 Unfixed
2026-02-20≤ 9.1.1

CVE-2025-68853

CVEWordfence
Medium 4.4
2025-08-19< 8.6.6

Contact Manager <= 8.6.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'title'

EUVDWordfenceCVE
High 8.1
2025-02-05< 8.6.5

WordPress Contact Manager Plugin <= 8.6.4 is vulnerable to Arbitrary File Upload

EUVDPatchstackWordfenceCVE