A vulnerability was found in Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor Plugin up to 3.7.3.2 on WordPress. It has been declared as critical. This vulnerability affects unknown code of the component Media Handler. The manipulation leads to missing authorization.
This vulnerability was named CVE-2024-5857. The attack can be initiated remotely. There is no exploit available.