CVE-2026-11578
The CVE concerns the Fluent Forms WordPress plugin (versions prior to 6.2.5). It describes an improper access control (IDOR-like) where a Manager restricted to specific forms can permanently delete submission entries from other forms, given a non-default configuration in which an administrator ha...