CVE-2024-0907 | NEX-Forms Form Builder Plugin up to 8.5.6 on WordPress restore_records authorization

Posted by Angelo Barbosa | Jan 31, 2024 | CVE

A vulnerability was found in NEX-Forms Form Builder Plugin up to 8.5.6 on WordPress. It has been classified as critical. This affects the function restore_records. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2024-0907. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-0907 | NEX-Forms Form Builder Plugin up to 8.5.6 on WordPress restore_records authorization

Related Posts

CVE-2024-2405 | Float Menu Plugin up to 6.0.0 on WordPress cross-site request forgery

CVE-2024-1203 | Conversios Plugin up to 6.9.1 on WordPress sql injection

CVE-2024-5416 | Elementor Website Builder Plugin up to 3.23.4 on WordPress URL Parameter cross site scripting

CVE-2024-0889 | Kmint21 Golden FTP Server 2.02b PASV Command denial of service (ID 176661)