Vulnerability in Fluent Forms
CVE-2026-11578
The Fluent Forms WordPress plugin before 6.2.5 does not properly restrict the deletion of form submission entries to the forms a restricted Manager is authorized to manage, allowing a Manager limited to specific forms to permanently delet…
Affected products
- Unknown Fluent Forms — versions 0
References
- contact@wpscan.com (technical-description, exploit, vdb-entry)