Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Smart Forms-when you need more than just a contact form Security Bypass - CVE-2023-49856 - Vulnerability Database
WP Plugin Smart Forms

WordPress Plugin Smart Forms-when you need more than just a contact form Security Bypass - CVE-2023-49856

High
Reference: CVE-2023-49856
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-49856
Title: WordPress Plugin Smart Forms-when you need more than just a contact form Security Bypass
Overview:

WordPress Plugin Smart Forms-when you need more than just a contact form is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently update arbitrary options (such as default_role and users_can_register). WordPress Plugin Smart Forms-when you need more than just a contact form version 2.6.84 is vulnerable prior versions may also be affected.