CVE-2026-1753

Gutena Forms < 1.6.1 - Contributor+ Arbitrary Limited Options Update

Description

The Gutena Forms WordPress plugin before 1.6.1 does not validate option to be updated, which could allow contributors and above role to update arbitrary boolean and array options (such as users_can_register).

INFO

Published Date :

2026-03-11T06:00:03.165Z

Last Modified :

2026-03-11T13:46:58.114Z

Source :

WPScan

AFFECTED PRODUCTS

The following products are affected by CVE-2026-1753 vulnerability.

Vendors	Products
Gutena Forms	Gutena Forms
Wordpress	Wordpress

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-1753.

URL	Resource
https://wpscan.com/vulnerability/c42dbab9-b729-4748-88e5-0bd2f6d66e3d/

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact