CVE-2026-12404 | webaways NEX-Forms Plugin up to 9.2.2 on WordPress authorization

Inserito da Angelo Barbosa | Giu 27, 2026 | CVE

A vulnerability described as problematic has been identified in webaways NEX-Forms Plugin up to 9.2.2 on WordPress. Impacted is an unknown function. Such manipulation leads to missing authorization.

This vulnerability is documented as CVE-2026-12404. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-12404 | webaways NEX-Forms Plugin up to 9.2.2 on WordPress authorization

Post correlati

CVE-2026-54753 | nrwl nx up to 22.7.1/23.0.0-beta.1 HELP Command routine (GHSA-g2r8-wvmj-jf5w)

CVE-2022-49258 | Linux Kernel up to 5.10.109/5.15.32/5.16.18/5.17.1 cc_cipher_exit kfree_sensitive(ctx_p->user.key) use after free

CVE-2025-41711 | Weidmueller ENERGY METER 750-230/ENERGY METER 750-24 up to 3.13 Firmware Image risky encryption (VDE-2025-079)

CVE-2025-14991 | Campcodes Complete Online Beauty Parlor Management System 1.0 bwdates-reports-details.php fromdate cross site scripting