CyberRota
← Ana sayfaya dön

CVE-2026-11880

LOW · CVSS 3.1 EPSS %0.14

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-01T07:16:22.487 · Çekilme zamanı: 2026-07-01T18:36:35.887332+00:00

CyberRota Yorumu

Saldırganın giriş yapmış olması gerekebilir.

CVE
CVE-2026-11880
Severity
LOW
CVSS
3.1
EPSS
%0.14
WordPress

Orijinal NVD Açıklaması

The Fluent Forms WordPress plugin before 6.2.1 does not properly verify ownership before processing a subscription cancellation request, allowing authenticated users with a low-privilege account to cancel subscriptions belonging to other users.