CVE-2024-56002

Name of the Vulnerable Software and Affected Versions Contact Form, Survey & Form Builder – MightyForms versions 1.3.9 and earlier

Description A Missing Authorization vulnerability is present in Contact Form, Survey & Form Builder – MightyForms, allowing the exploitation of incorrectly configured access control security levels. This issue enables unauthorized access.

Recommendations For versions 1.3.9 and earlier, update to a version later than 1.3.9 to resolve the issue. As a temporary workaround, consider restricting access to the MightyForms module to minimize the risk of exploitation.