Loading market data...
← Back to CVE feed

CVE-2026-11562

MEDIUM CVSS 4.3 View on NVD ↗

Description

The WS Form LITE WordPress plugin before 1.11.8 does not have a capability check on one of its settings-update actions, allowing authenticated users with subscriber-level access and above to modify the WS Form LITE WordPress plugin before 1.11.8's settings.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Published: Jul 01, 2026 07:16 UTC Modified: Jul 01, 2026 18:17 UTC