CVE-2026-1782— MetForm Pro <= 3.9.7 - Unauthenticated Payment Amount Manipulation via 'mf-calculation'
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-1782
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MetForm Pro <= 3.9.7 - Unauthenticated Payment Amount Manipulation via 'mf-calculation'
Source: NVD (National Vulnerability Database)
Vulnerability Description
The MetForm Pro plugin for WordPress is vulnerable to Improper Input Validation in all versions up to, and including, 3.9.7 This is due to the payment integrations (Stripe/PayPal) trusting a user-submitted calculation field value without recomputing or validating it against the configured form price. This makes it possible for unauthenticated attackers to manipulate the payment amount via the 'mf-calculation' field in the form submission REST request granted there exists a specific form with this particular configuration.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
WordPress plugin MetForm Pro 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台具有在基于PHP和MySQL的服务器上架设个人博客网站的功能。WordPress plugin是一个应用插件。 WordPress plugin MetForm Pro 3.9.7及之前版本存在安全漏洞,该漏洞源于支付集成信任用户提交的计算字段值而未重新计算或验证,可能导致未经身份验证的攻击者操纵支付金额。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Wpmet | MetForm Pro | 0 ~ 3.9.7 | - |
II. Public POCs for CVE-2026-1782
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-1782
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same vendor: Wpmet
- CVE-2026-1261
MetForm Pro <= 3.9.6 - Unauthenticated Stored Cross-Site Scr - CVE-2025-0321
ElementsKit Pro <= 3.7.8 - Authenticated (Contributor+) DOM- - CVE-2024-7063
ElementsKit Pro <= 3.6.6 - Authenticated (Contributor+) Sens - CVE-2024-7064
ElementsKit Pro <= 3.6.5 - Authenticated (Contributor+) Stor - CVE-2023-39993
WordPress ElementsKit Lite plugin <= 2.9.0 - Broken Access C
Same weakness: CWE-20
V. Comments for CVE-2026-1782
No comments yet