exploitDog

GHSA-mjh6-7rhf-fhc8

Опубликовано: 02 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The Ninja Forms WordPress plugin before 3.13.3 allows unauthenticated attackers to generate valid access tokens via the REST API which can then be used to read form submissions.

The Ninja Forms WordPress plugin before 3.13.3 allows unauthenticated attackers to generate valid access tokens via the REST API which can then be used to read form submissions.

Ссылки

EPSS

Процентиль: 15%

0.00049

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2025-14072

CVSS3: 5.3

nvd

около 1 месяца назад

The Ninja Forms WordPress plugin before 3.13.3 allows unauthenticated attackers to generate valid access tokens via the REST API which can then be used to read form submissions.

EPSS

Процентиль: 15%

0.00049

Низкий

5.3 Medium

CVSS3

CVE ID