HIGH
Phil Kurth
CVE published 2026-07-13
CVE-2026-57378
A Missing Authorization vulnerability was reported in Advanced Forms plugin versions up to 1.9.3.7. This issue allows attackers to exploit incorrectly configured access control security levels, potentially leading to high impact. The vulnerability has a CVSS score of 7.5 and a HIGH severity rating. The Common Vulnerability Scoring System (CVSS) vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N. The w [truncated]