CVE-2026-6206 | websoudan MW WP Form Plugin up to 5.1.2 on WordPress _get_post_property_from_querystring authorization

Inserito da Angelo Barbosa | Mag 14, 2026 | CVE

A vulnerability has been found in websoudan MW WP Form Plugin up to 5.1.2 on WordPress and classified as problematic. This affects the function _get_post_property_from_querystring. Performing a manipulation results in authorization bypass.

This vulnerability is cataloged as CVE-2026-6206. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to install a patch to address this issue.

CVE-2026-6206 | websoudan MW WP Form Plugin up to 5.1.2 on WordPress _get_post_property_from_querystring authorization

Post correlati

CVE-2025-25724 | libarchive up to 3.7.7 TAR Archive tar/util.c list_item_verbose return return value

CVE-2024-13774 | wpcodefactory Wishlist for WooCommerce Plugin up to 3.1.7 on WordPress Setting save_to_multiple_wishlist cross-site request forgery

CVE-2024-22492 | JFinalcms 5.0.0 /gusetbook/save contact cross site scripting

CVE-2023-3408 | Bricks Plugin up to 1.8.1 on WordPress Setting save_settings cross-site request forgery