Lucene search
K

123 matches found

Vulnrichment
Vulnrichment
added 2026/02/14 3:25 a.m.3 views

CVE-2025-14067 Easy Form Builder <= 3.9.3 - Missing Authorization to Authenticated (Subscriber+) Sensitive Form Response Data Exposure

The Easy Form Builder plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on multiple AJAX actions in all versions up to, and including, 3.9.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to retrieve...

5.3CVSS5.5AI score0.00231EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/14 12:0 a.m.6 views

PT-2026-8046

The Easy Form Builder plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on multiple AJAX actions in all versions up to, and including, 3.9.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to retrieve...

5.3CVSS5.5AI score0.00231EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.8 views

WordPress plugin Easy Form Builder 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.3CVSS5.8AI score0.00231EPSS
Exploits0References4
Patchstack
Patchstack
added 2026/02/13 9:56 p.m.8 views

WordPress Easy Form Builder plugin <= 3.9.3 - Missing Authorization to Authenticated (Subscriber+) Sensitive Form Response Data Exposure vulnerability

Missing Authorization to Authenticated Subscriber+ Sensitive Form Response Data Exposure vulnerability discovered by Itthidej Aramsri Boeing777 in WordPress Plugin Easy Form Builder versions = 3.9.3...

5.3CVSS5.5AI score0.00231EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/23 9:15 p.m.7 views

CVE-2026-22472

Missing Authorization vulnerability in hassantafreshi Easy Form Builder easy-form-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form Builder: from n/a through = 3.9.6...

4.3CVSS5.4AI score0.00185EPSS
Exploits0References1
NVD
NVD
added 2026/01/22 5:16 p.m.15 views

CVE-2026-22472

Missing Authorization vulnerability in hassantafreshi Easy Form Builder easy-form-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form Builder: from n/a through = 3.9.6...

4.3CVSS0.00185EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/22 4:52 p.m.4 views

CVE-2026-22472

Missing Authorization vulnerability in hassantafreshi Easy Form Builder easy-form-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form Builder: from n/a through = 3.9.6...

8.8CVSS5.3AI score0.00185EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/22 4:52 p.m.27 views

CVE-2026-22472 WordPress Easy Form Builder plugin <= 3.9.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in hassantafreshi Easy Form Builder easy-form-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form Builder: from n/a through = 3.9.6...

4.3CVSS0.00185EPSS
Exploits0References1
CVE
CVE
added 2026/01/22 4:52 p.m.32 views

CVE-2026-22472

CVE-2026-22472 is reported as a Missing Authorization vulnerability in hassantafreshi Easy Form Builder (WordPress plugin) up to version 3.9.6. The connected sources consistently describe it as Broken/Incorrect Access Control allowing exploitation due to misconfigured security levels. According t...

4.3CVSS5.4AI score0.00185EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/22 4:52 p.m.2 views

CVE-2026-22472 WordPress Easy Form Builder plugin <= 3.9.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in hassantafreshi Easy Form Builder easy-form-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form Builder: from n/a through = 3.9.6...

4.3CVSS5.9AI score0.00185EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.5 views

PT-2026-4241

Missing Authorization vulnerability in hassantafreshi Easy Form Builder easy-form-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form Builder: from n/a through = 3.9.6...

5.4AI score0.00185EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/22 12:0 a.m.6 views

WordPress plugin Easy Form Builder has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added t...

4.3CVSS5.8AI score0.00185EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/06 4:1 a.m.10 views

WordPress Easy Form Builder plugin <= 3.9.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jitlada in WordPress Plugin Easy Form Builder versions = 3.9.6...

8.8CVSS7AI score0.00185EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/19 7:32 a.m.3 views

CVE-2025-66117

Missing Authorization vulnerability in Ays Pro Easy Form easy-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form: from n/a through = 2.7.8...

7.5CVSS7AI score0.0023EPSS
Exploits0References1
NVD
NVD
added 2025/12/18 8:16 a.m.5 views

CVE-2025-66117

Missing Authorization vulnerability in Ays Pro Easy Form easy-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form: from n/a through = 2.7.8...

7.5CVSS0.0023EPSS
Exploits0References1
CVE
CVE
added 2025/12/18 7:22 a.m.14 views

CVE-2025-66117

CVE-2025-66117 corresponds to a Missing Authorization/Broken Access Control issue in the WordPress plugin Easy Form . Affected: Easy Form versions up to and including 2.7.8 . The vulnerability arises from incorrectly configured access control, enabling exploitation due to missing authorization. M...

7.5CVSS6.6AI score0.0023EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/18 7:22 a.m.1 views

CVE-2025-66117 WordPress Easy Form plugin <= 2.7.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ays Pro Easy Form easy-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form: from n/a through = 2.7.8...

7.5CVSS6.6AI score0.0023EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/18 7:22 a.m.26 views

CVE-2025-66117 WordPress Easy Form plugin <= 2.7.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in Ays Pro Easy Form easy-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form: from n/a through = 2.7.8...

7.5CVSS0.0023EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/18 7:22 a.m.4 views

EUVD-2025-204043

Missing Authorization vulnerability in Ays Pro Easy Form easy-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Form: from n/a through = 2.7.8...

7.5CVSS6.5AI score0.0023EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.3 views

WordPress plugin Easy Form 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

7.5CVSS6.5AI score0.0023EPSS
Exploits0References1
Rows per page
Query Builder