CVE-2023-30616

Name of the Vulnerable Software and Affected Versions Form block versions prior to 1.0.2

Description The Form block WordPress plugin is subject to a Cross-Site Request Forgery (CSRF) due to a missing nonce check. This allows requests to be sent to forms from any website without the user's knowledge. The issue affects all form blocks, enabling potential CSRF attacks.

Recommendations For versions prior to 1.0.2, upgrade to version 1.0.2 to resolve the issue. At the moment, there is no information about other workarounds for this vulnerability.