CVE-2025-15510 | NEX-Forms Plugin up to 9.1.8 on WordPress NF5_Export_Forms nex_forms_Id information disclosure

Inserito da Angelo Barbosa | Gen 30, 2026 | CVE

A vulnerability identified as problematic has been detected in NEX-Forms Plugin up to 9.1.8 on WordPress. This affects the function NF5_Export_Forms. The manipulation of the argument nex_forms_Id leads to information disclosure.

This vulnerability is traded as CVE-2025-15510. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-15510 | NEX-Forms Plugin up to 9.1.8 on WordPress NF5_Export_Forms nex_forms_Id information disclosure

Post correlati

CVE-2025-68459 | Ruijie AP180/AP180-AC/AP180-PE CLI Service os command injection

CVE-2024-34805 | Webvitaly iFrame Plugin up to 5.0 on WordPress cross site scripting

CVE-2023-30756 | Siemens SIMATIC CP 1242-7 V2 HTTP Request Header null pointer dereference (ssa-423808)

CVE-2024-4452 | ElementsKit Pro Plugin up to 3.6.1 on WordPress cross site scripting