CVE-2025-11924 | Ninja Forms Plugin up to 3.13.1/3.13.2 on WordPress REST Endpoint resource injection

Inserito da Angelo Barbosa | Dic 16, 2025 | CVE

A vulnerability identified as problematic has been detected in Ninja Forms Plugin up to 3.13.1/3.13.2 on WordPress. This vulnerability affects unknown code of the component REST Endpoint. Performing manipulation results in improper control of resource identifiers.

This vulnerability was named CVE-2025-11924. The attack may be initiated remotely. There is no available exploit.

CVE-2025-11924 | Ninja Forms Plugin up to 3.13.1/3.13.2 on WordPress REST Endpoint resource injection

Post correlati

CVE-2025-4215 | gorhill uBlock Origin up to 1.63.3b16 UI src/js/1p-filters.js currentStateChanged redos

CVE-2025-62482 | Zoom Workplace up to 6.5.5 on Windows cross site scripting

CVE-2025-7387 | Lana Downloads Manager Plugin up to 1.10.0 on WordPress endpoint cross site scripting

CVE-2023-23324 | Zumtobel Netlink CCD Onboard up to 3.80 hard-coded credentials