CVE-2024-1306

CVE-2024-1306 · Severity

The Smart Forms WordPress plugin before 2.6.94 does not have CSRF checks in some places, which could allow attackers to make logged-in users perform unwanted actions via CSRF attacks, such as editing entries, and we consider it a medium risk.

Learn more about our Wordpress Pen Testing.