CVE-2026-1753

NONE EPSS 0.02%

Mar 11, 2026

Updated Mar 11, 2026

WordPress

Parameter	Value
Affected Versions	before 1.6.1
Vendor	WordPress
Public PoC	No

The Gutena Forms WordPress plugin before 1.6.1 does not validate option to be updated, which could allow contributors and above role to update arbitrary boolean and array options (such as users_can_register).

References 1

https://wpscan.com/vulnerability/c42dbab9-b729-4748-88e5-0bd2f6d66e3d/

contact@wpscan.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-4063

WordPress

4.3

CVE-2026-3986

WordPress

6.4

CVE-2026-3891

WordPress

9.8

CVE-2026-3045

WordPress

7.5

CVE-2026-32448

WordPress

6.5

CVE Details

CVE ID

CVE-2026-1753

Published Date

Mar 11, 2026

Vendor

WordPress

Severity

NONE

Exploit Prediction (EPSS)

Probability of Exploit 0.02%

Likelihood of exploitation in next 30 days

Percentile: 6.3th percentile (higher than 6.3% of all CVEs)

Standard patching cycle

Impact

Minimal impact

Source

View Advisory

Menu

CVE-2026-1753

References 1

Related Vulnerabilities

CVE-2026-4063

CVE-2026-3986

CVE-2026-3891

CVE-2026-3045

CVE-2026-32448

CVE Details

Editor's Choice

Menu

CVE-2026-1753

References 1

Related Vulnerabilities

CVE-2026-4063

CVE-2026-3986

CVE-2026-3891

CVE-2026-3045

CVE-2026-32448

CVE Details

Editor's Choice

Stay informed on cybersecurity