Skip to main content

JetFormBuilder EUVDEUVD-2026-37637

| CVE-2026-54196 MEDIUM
Incorrect Privilege Assignment (CWE-266)
2026-06-17 Patchstack
6.8
CVSS 3.1 · Vendor: Patchstack
Share

Severity by source

Vendor (Patchstack) PRIMARY
6.8 MEDIUM
AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
vuln.today AI
6.8 MEDIUM

Network-accessible WordPress plugin requires subscriber authentication (PR:L); AC:H reflects specific exploitation conditions; C:H and I:H reflect potential admin escalation; A:N as privilege escalation has no direct availability impact.

3.1 AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
4.0 AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (Patchstack).

CVSS VectorVendor: Patchstack

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Lifecycle Timeline

1
Analysis Generated
Jun 17, 2026 - 12:51 vuln.today

DescriptionCVE.org

Subscriber Privilege Escalation in JetFormBuilder <= 3.6.1 versions.

AnalysisAI

Privilege escalation in JetFormBuilder WordPress plugin versions 3.6.1 and earlier allows authenticated subscribers to elevate their role to a higher-privileged level within the WordPress instance. The root cause is incorrect privilege assignment (CWE-266) in the plugin's form processing logic, enabling the lowest authenticated WordPress user role to gain unauthorized administrative or elevated access. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Register or obtain WordPress subscriber account
Delivery
Identify JetFormBuilder form endpoint or processing logic
Exploit
Craft request with privilege-manipulating parameters
Execution
Trigger incorrect privilege assignment (CWE-266)
Persist
Escalate account to administrator or editor role
Impact
Access restricted WordPress admin functions

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to hold at minimum a WordPress subscriber-level account on the target site, as confirmed by PR:L in the CVSS vector. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 6.8 Medium score (AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N) reflects a meaningful but conditionally exploitable vulnerability. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker registers a free subscriber account on a WordPress site with open user registration and JetFormBuilder <= 3.6.1 installed. By submitting a specially crafted form request that satisfies the specific conditions reflected by the AC:H rating - likely involving manipulated role-related form fields or endpoint parameters - the attacker triggers incorrect privilege assignment and elevates their account to an editor or administrator role. …
Remediation Update JetFormBuilder to a version later than 3.6.1. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-37637 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy