cleantalk
Vulnerabilities and Security Researches

JetFormBuilder — Dynamic Blocks Form Builder, CVE-2026-32525

CVE, Research URL

CVE-2026-32525

Home page URL

Security reports for JetFormBuilder — Dynamic Blocks Form Builder

Application

JetFormBuilder — Dynamic Blocks Form Builder

Published on
Mar 25, 2026
Research Description
Improper Control of Generation of Code ('Code Injection') vulnerability in jetmonsters JetFormBuilder jetformbuilder allows Code Injection.This issue affects JetFormBuilder: from n/a through <= 3.5.6.1.
Affected versions
max 3.5.6.2.
Status
vulnerable
Previous vulnerability researches
JetFormBuilder — Dynamic Blocks Form Builder (CVE-2026-32525) , Apr 13, 2026
JetFormBuilder — Dynamic Blocks Form Builder (CVE-2026-4373) , Apr 13, 2026
JetFormBuilder — Dynamic Blocks Form Builder (CVE-2025-64384) , Dec 11, 2025
JetFormBuilder — Dynamic Blocks Form Builder (CVE-2025-11991) , Jan 10, 2026
JetFormBuilder — Dynamic Blocks Form Builder (CVE-2024-7291) , Aug 04, 2024
New vulnerability
Advanced Order Export For WooCommerce (CVE-2026-11360) , Jun 19, 2026
WP Activity Log (CVE-2026-54806) , Jun 18, 2026
Gutenberg Blocks by Kadence Blocks – Page Builder Features (CVE-2026-11357) , Jun 18, 2026
JetFormBuilder — Dynamic Blocks Form Builder (CVE-2026-54196) , Jun 18, 2026
JetFormBuilder — Dynamic Blocks Form Builder (CVE-2026-54195) , Jun 18, 2026