CVE-2024-51651

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jan 7, 2025
CWE ID 862

Summary

CVE-2024-51651 is a critical vulnerability affecting the CubeWP Forms – All-in-One Form Builder. It involves a Missing Authorization issue, where access control security levels can be incorrectly configured, enabling unauthorized users to exploit the system. This security flaw impacts versions of CubeWP Forms from n/a through 1.1.5. Unauthorized access can lead to potential data breaches, underscoring the importance of promptly updating to a secure version.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share