cleantalk
Vulnerabilities and Security Researches

CubeWP Forms – LeadGen & Contact Form, CVE-2024-51651

CVE, Research URL

CVE-2024-51651

Home page URL

Security reports for CubeWP Forms – LeadGen & Contact Form

Application

CubeWP Forms – LeadGen & Contact Form

Published on
Jan 07, 2025
Research Description
Missing Authorization vulnerability in CubeWP CubeWP Forms – All-in-One Form Builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP Forms – All-in-One Form Builder: from n/a through 1.1.5.
Affected versions
Min -, max 1.1.5.
Status
vulnerable
Previous vulnerability researches
CubeWP Forms – LeadGen & Contact Form (CVE-2024-47300) , Sep 28, 2024
CubeWP Forms – LeadGen & Contact Form (CVE-2025-49880) , Jun 20, 2025
CubeWP Forms – LeadGen & Contact Form (CVE-2024-51651) , Jan 09, 2025
New vulnerability
Football Pool (CVE-2025-5490) , Jun 20, 2025
CubeWP Forms – LeadGen & Contact Form (CVE-2025-49880) , Jun 20, 2025
WP2LEADS | WordPress und KlickTipp einfach verbinden – WooCommerce und KlickTipp einfach verbinden (CVE-2025-49316) , Jun 20, 2025
Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit (CVE-2025-1562) , Jun 20, 2025
eCommerce Product Catalog Plugin for WordPress (CVE-2025-49331) , Jun 20, 2025