CVE-2026-11562
The WS Form LITE WordPress plugin before 1.11.8 does not have a capability check on one of its settings-update actions, allowing authentica
CVSS
4.3
Medio
EPSS
0.2%
p6
KEV
—
Exploit Today
2
0-100
Publicado: 1 jul 2026 · Última mod.: 1 jul 2026
0.2%EPSS · 30 días0.2%
2026-07-012026-07-17
The WS Form LITE WordPress plugin before 1.11.8 does not have a capability check on one of its settings-update actions, allowing authenticated users with subscriber-level access and above to modify the WS Form LITE WordPress plugin before 1.11.8's settings.
Sin CVEs relacionados por CWE o producto.