CVE Catalog

CVE-2026-57750

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Summary

The ez Form Calculator Premium plugin version 2.14.1.2 and earlier contains a vulnerability allowing unauthenticated attackers to bypass access controls. This flaw enables unauthorized access to functions or data without required authentication.

Risk Assessment

The organization faces the risk of unauthorized access to sensitive data or calculator functions, potentially leading to information disclosure or data manipulation without administrator awareness.

Recommendation

Immediately update the ez Form Calculator Premium plugin to the latest available version that addresses this vulnerability. If an update is not available, consider temporarily disabling the plugin until a fix is released.

Original NVD description (English source)

Unauthenticated Broken Access Control in ez Form Calculator Premium <= 2.14.1.2 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS