CVE-2026-11794
The CVE-2026-11794 entry concerns the WordPress plugin “Advanced Form Integration — Connect Forms to 200+ Apps” up to version 2.1.1. Affected behavior: when creating a user from a public form submission, the plugin does not enforce the WordPress role, which can allow unauthenticated visitors to c...