漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Fluent Forms < 6.2.5 - Form Manager+ Cross-Form Submission Entry Deletion via IDOR
Vulnerability Description
The Fluent Forms WordPress plugin before 6.2.5 does not properly restrict the deletion of form submission entries to the forms a restricted Manager is authorized to manage, allowing a Manager limited to specific forms to permanently delete submission entries belonging to other forms. This requires a non-default configuration in which an administrator has created at least one Manager restricted to specific forms.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WPManageNinja Fluent Forms 授权问题漏洞
Vulnerability Description
WPManageNinja Fluent Forms是WPManageNinja公司的一款Web组件构建工具。 WPManageNinja Fluent Forms 6.2.5之前版本存在授权问题漏洞,该漏洞源于未正确限制删除表单提交条目的权限,允许受限于特定表单的Manager永久删除属于其他表单的提交条目。
CVSS Information
N/A
Vulnerability Type
N/A