CVE-2023-45275

Name of the Vulnerable Software and Affected Versions Kali Forms versions through 2.3.28

Description The issue is related to a Missing Authorization vulnerability in the Kali Forms Contact Form builder with drag & drop, allowing exploitation of incorrectly configured access control security levels.

Recommendations For versions through 2.3.28, update to a version later than 2.3.28 to resolve the issue. As a temporary workaround, consider restricting access to the Contact Form builder with drag & drop feature until a patch is available.