CVE-2026-2002 | Forminator Forms Plugin up to 1.50.2 on WordPress form_name cross site scripting

Full Article URL: https://vuldb.com/?id.346224
Textarea URL (this page): <a href="https://textarea.nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOz9W3z0zRMzYxMzIyAQCQOwj0_2026-02-16">https://textarea.nl/i/eNrLKCkpKLbS1y8rzUlJ0kvOz9W3z0zRMzYxMzIyAQCQOwj0_2026-02-16
Source: https://vuldb.com/?rss.recent
Vuldb: https://vuldb.com
Publication date: 2026-02-16 19:28:24
Last retrieval: 2026-02-16 20:46:18.120247

19:28 - 16 Feb 2026

vuldb.com

A vulnerability has been found in Forminator Forms Plugin up to 1.50.2 on WordPress and classified as problematic. This impacts an unknown function. The manipulation of the argument form_name leads to cross site scripting. This vulnerability is listed as CVE-2026-2002. The attack may be initiated remotely. There is no available exploit.

https://vuldb.com/?id.346224

Article info: