PT-2026-24584 · Undefined · Undefined
Published
2026-03-11
·
Updated
2026-03-15
·
CVE-2026-1753
CVSS v3.1
6.8
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Gutena Forms WordPress plugin versions prior to 1.6.1
Description
The Gutena Forms WordPress plugin does not validate options being updated. This could allow users with contributor or above roles to modify arbitrary boolean and array options, such as
users can register.Recommendations
Update Gutena Forms to version 1.6.1 or later.
Exploit
Fix
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Undefined