2 matches found
CVE-2026-11580
creationtimestamp| type| source ---|---|--- 2026-07-15 08:13:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqobn6zavk2e...
CVE-2026-11580
The Kali Forms — Contact Form & Drag-and-Drop Builder WordPress plugin before 2.4.17 does not perform a per-object capability check in its post-duplication AJAX action, allowing users with Contributor-level access or above to duplicate any post regardless of owner, post type, or status into a...