CVE-2024-1307 Information

Description

The Smart Forms WordPress plugin before 2.6.94 does not have proper authorization in some actions which could allow users with a role as low as a subscriber to call them and perform unauthorized actions

Reference

https://wpscan.com/vulnerability/bbc6cebd-e9bf-4b08-a474-f9312b3c0947/