CVE-2025-10019

Publication date

2025-12-18 07:21:40

Family

Patchstack

State

PUBLISHED

Description

Authorization Bypass Through User-Controlled Key vulnerability in codepeople Contact Form Email contact-form-to-email allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form Email: from n/a through <= 1.3.60.