CVE-2026-57669
Deferred
Deferred - Pending Action
Subscriber Broken Access Control in Advanced Contact Form 7 DB
Vulnerability report for CVE-2026-57669, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-07-02
Last updated on: 2026-07-02
Assigner: Patchstack
Description
Description
Subscriber Broken Access Control in Advanced Contact form 7 DB <= 2.0.9 versions.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| advanced_contact_form_7_db | advanced_contact_form_7_db | to 2.0.9 (inc) |
| advanced_contact_form_7_db | advanced_contact_form_7_db | From 2.1.0 (inc) |
| advanced_contact_form_7 | advanced_contact_form_7 | to 2.0.9 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |