Vulnerabilities

Report: - Formie: Unauthenticated front-end submission editing can overwrite existing subm... CVE-2026-47266

2026-05-29 0 views admin

CVE ID :CVE-2026-47266 Published : May 29, 2026, 8:16 p.m. | 45 minutes ago Description :Formie is a Craft CMS plugin for creating forms. Prior to 2.2.21 and 3.1.26, unauthenticated users could modify existing submissions by posting a known or guessed submission ID to formie/submissions/save-submission. This vulnerability is fixed in 2.2.21 and 3.1.26. Severity: 8.7 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-47266

Severity

HIGH

Published

May 29, 2026

🏷️ Tags

reportformieunauthenticatedfrontsubmissioneditingoverwriteexisting47266cve

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: - Formie: Unauthenticated front-end submission editing can overwrite existing subm... CVE-2026-47266

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-45324 - Rizin: Double free in cmd_search.c

Report: Ultimate Guide: CVE-2026-45294 - FreeScout: User Account Enumeration via Password Reset Response Differentiation

Report: Essential Guide: CVE-2026-45151 - NanoMQ: NULL Pointer Dereference

Report: CVE-2026-45149 - brace-expansion: Large numeric range defeats documented `max` DoS protection - Analysis

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting