cleantalk
Vulnerabilities and Security Researches

Contact Form DB – Elementor, CVE-2026-25320

CVE, Research URL

CVE-2026-25320

Home page URL

Security reports for Contact Form DB – Elementor

Application

Contact Form DB – Elementor

Published on
Feb 19, 2026
Research Description
Missing Authorization vulnerability in Cool Plugins Elementor Contact Form DB sb-elementor-contact-form-db allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elementor Contact Form DB: from n/a through <= 2.1.3.
Affected versions
max 2.1.3.
Status
vulnerable
Previous vulnerability researches
Responsive Lightbox2 (CVE-2022-3987) , Jun 07, 2024
Responsive Lightbox2 (3a708e667647cfc7347348989e4ffa77f2b38c04) , Jun 07, 2024
Responsive Lightbox &amp; Gallery (CVE-2025-15386) , Feb 27, 2026
Responsive Lightbox &amp; Gallery (CVE-2024-43924) , Aug 29, 2024
Responsive Lightbox &amp; Gallery (CVE-2013-6837) , Jun 07, 2024
New vulnerability
Visitor Maps Extended Referer Field (CVE-2025-69389) , Feb 28, 2026
Event Manager and Tickets Selling Plugin for WooCommerce &#8211; WpEvently &#8211; WordPress Plugin (CVE-2026-24942) , Feb 28, 2026
Event Manager and Tickets Selling Plugin for WooCommerce &#8211; WpEvently &#8211; WordPress Plugin (CVE-2026-23549) , Feb 28, 2026
Event Manager and Tickets Selling Plugin for WooCommerce &#8211; WpEvently &#8211; WordPress Plugin (CVE-2026-24954) , Feb 28, 2026
Library Management System (CVE-2025-12707) , Feb 28, 2026