CVE-2026-2002 | Forminator Forms Plugin up to 1.50.2 on WordPress form_name cross site scripting

Inserito da Angelo Barbosa | Feb 16, 2026 | CVE

A vulnerability has been found in Forminator Forms Plugin up to 1.50.2 on WordPress and classified as problematic. This impacts an unknown function. The manipulation of the argument form_name leads to cross site scripting.

This vulnerability is listed as CVE-2026-2002. The attack may be initiated remotely. There is no available exploit.

CVE-2026-2002 | Forminator Forms Plugin up to 1.50.2 on WordPress form_name cross site scripting

Post correlati

CVE-2025-8765 | Datacom DM955 5GT 1200 825.8010.00 Wireless Basic Settings SSID cross site scripting

CVE-2024-2963 | marubon Pocket News Generator Plugin up to 0.2.0 on WordPress Setting Consumer Key/Access Token cross site scripting

CVE-2025-14350 | Mattermost up to 10.11.9/11.1.2/11.2.1 Team Membership channel_mentions authorization

CVE-2024-6177 | LG Electronics SuperSign CMS up to 4.3.0 cross site scripting