Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| WPMU DEV | Forminator | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Wordpress | Wordpress | 80% |
|
||||||||
| Wpmudev | Forminator Forms | 84% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
Vendor Solution
Update the WordPress Forminator Plugin to the latest available version (at least 1.53.2).
Tracking
Sign in to view the affected projects.
No advisories yet.
Fri, 26 Jun 2026 07:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Wordpress
Wordpress wordpress Wpmudev Wpmudev forminator Forms |
|
| Vendors & Products |
Wordpress
Wordpress wordpress Wpmudev Wpmudev forminator Forms |
Thu, 25 Jun 2026 14:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Cross Site Scripting (XSS) in Forminator <= 1.53.1 versions. | |
| Title | WordPress Forminator plugin <= 1.53.1 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-25T14:52:38.046Z
Reserved: 2026-06-18T14:38:18.949Z
Link: CVE-2026-56071
Vulnrichment
No data.
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-26T07:30:05Z