A vulnerability was found in wpvibes Form Vibes Plugin up to 1.5.2 on WordPress. It has been classified as problematic. This affects an unknown part of the component Contact Form 7. The manipulation leads to cross site scripting.
This vulnerability is listed as CVE-2026-13378. The attack may be initiated remotely. There is no available exploit.