CVE-2025-11924

Name of the Vulnerable Software and Affected Versions Ninja Forms – The Contact Form Builder That Grows With You versions up to and including 3.13.2

Description The Ninja Forms plugin for WordPress is susceptible to an Insecure Direct Object Reference issue. The plugin does not adequately verify user authorization before the ninja-forms-views REST endpoints return form metadata and submission content. This allows unauthenticated attackers to read arbitrary form definitions and submission records if they can obtain a leaked bearer token and load a page containing the Submissions Table block. A patch released in version 3.13.1 was found to be ineffective as it introduced a REST API endpoint that allowed the creation of valid bearer tokens for arbitrary form IDs.

Recommendations Versions prior to 3.13.1 are vulnerable. Versions 3.13.1 and 3.13.2 are vulnerable. Restrict access to the ninja-forms-views REST API endpoints. Monitor bearer tokens for suspicious activity.