CVE-2024-51651
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Published Jan 7, 2025
CWE ID 862
Summary
CVE-2024-51651 is a critical vulnerability affecting the CubeWP Forms – All-in-One Form Builder. It involves a Missing Authorization issue, where access control security levels can be incorrectly configured, enabling unauthorized users to exploit the system. This security flaw impacts versions of CubeWP Forms from n/a through 1.1.5. Unauthorized access can lead to potential data breaches, underscoring the importance of promptly updating to a secure version.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Forms Plugin
Affected Vendors
- WordPress