{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-0996", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2026-01-15T15:42:36.325Z", "datePublished": "2026-02-10T05:29:42.034Z", "dateUpdated": "2026-04-08T16:32:17.369Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:32:17.369Z"}, "affected": [{"vendor": "techjewel", "product": "Fluent Forms \u2013 Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "6.1.14", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Fluent Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AI Form Builder module in all versions up to, and including, 6.1.14 due to a combination of missing authorization checks, a leaked nonce, and insufficient input sanitization. The vulnerability allows Subscriber-level users to trigger AI form generation via a protected endpoint. When prompted, AI services will typically return bare JavaScript code (without <script> tags), which bypasses the plugin's sanitization. This stored JavaScript executes whenever anyone views the generated form, making it possible for authenticated attackers with Subscriber-level access and above to inject arbitrary web scripts that will execute in the context of any user accessing the form."}], "title": "Fluent Forms <= 6.1.14 - Authenticated (Subscriber+) Stored Cross-Site Scripting via AI Form Builder Module", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/00192a36-4b75-4dae-9a6e-0afb02ed5bad?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/boot/globals.php#L438"}, {"url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/app/Modules/Ai/AiFormBuilder.php#L29"}, {"url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/app/Modules/Ai/AiFormBuilder.php#L334"}, {"url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/app/Hooks/actions.php#L641"}, {"url": "https://plugins.trac.wordpress.org/changeset/3449710/fluentform/trunk/app/Hooks/actions.php"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "baseScore": 6.4, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Osvaldo Noe Gonzalez Del Rio"}], "timeline": [{"time": "2026-01-15T15:58:25.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2026-02-09T17:19:48.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-10T15:39:54.764931Z", "id": "CVE-2026-0996", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-10T15:40:55.315Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-0996", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-10T15:39:54.764931Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-10T15:40:49.973Z"}}], "cna": {"title": "Fluent Forms <= 6.1.14 - Authenticated (Subscriber+) Stored Cross-Site Scripting via AI Form Builder Module", "credits": [{"lang": "en", "type": "finder", "value": "Osvaldo Noe Gonzalez Del Rio"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "techjewel", "product": "Fluent Forms \u2013 Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder", "versions": [{"status": "affected", "version": "*", "versionType": "semver", "lessThanOrEqual": "6.1.14"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2026-01-15T15:58:25.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2026-02-09T17:19:48.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/00192a36-4b75-4dae-9a6e-0afb02ed5bad?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/boot/globals.php#L438"}, {"url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/app/Modules/Ai/AiFormBuilder.php#L29"}, {"url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/app/Modules/Ai/AiFormBuilder.php#L334"}, {"url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/app/Hooks/actions.php#L641"}, {"url": "https://plugins.trac.wordpress.org/changeset/3449710/fluentform/trunk/app/Hooks/actions.php"}], "descriptions": [{"lang": "en", "value": "The Fluent Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AI Form Builder module in all versions up to, and including, 6.1.14 due to a combination of missing authorization checks, a leaked nonce, and insufficient input sanitization. The vulnerability allows Subscriber-level users to trigger AI form generation via a protected endpoint. When prompted, AI services will typically return bare JavaScript code (without <script> tags), which bypasses the plugin's sanitization. This stored JavaScript executes whenever anyone views the generated form, making it possible for authenticated attackers with Subscriber-level access and above to inject arbitrary web scripts that will execute in the context of any user accessing the form."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-02-10T05:29:42.034Z"}}}, "cveMetadata": {"cveId": "CVE-2026-0996", "state": "PUBLISHED", "dateUpdated": "2026-02-10T15:40:55.315Z", "dateReserved": "2026-01-15T15:42:36.325Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2026-02-10T05:29:42.034Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Fluent Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AI Form Builder module in all versions up to, and including, 6.1.14 due to a combination of missing authorization checks, a leaked nonce, and insufficient input sanitization. The vulnerability allows Subscriber-level users to trigger AI form generation via a protected endpoint. When prompted, AI services will typically return bare JavaScript code (without <script> tags), which bypasses the plugin's sanitization. This stored JavaScript executes whenever anyone views the generated form, making it possible for authenticated attackers with Subscriber-level access and above to inject arbitrary web scripts that will execute in the context of any user accessing the form."}, {"lang": "es", "value": "El plugin Fluent Forms para WordPress es vulnerable a Cross-Site Scripting Almacenado a trav\u00e9s del m\u00f3dulo AI Form Builder en todas las versiones hasta la 6.1.14, inclusive, debido a una combinaci\u00f3n de comprobaciones de autorizaci\u00f3n faltantes, un nonce filtrado y saneamiento de entrada insuficiente. La vulnerabilidad permite a usuarios de nivel Suscriptor activar la generaci\u00f3n de formularios de IA a trav\u00e9s de un endpoint protegido. Cuando se le solicita, los servicios de IA suelen devolver c\u00f3digo JavaScript sin las etiquetas "}], "id": "CVE-2026-0996", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2026-02-10T06:15:54.320", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/app/Hooks/actions.php#L641"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/app/Modules/Ai/AiFormBuilder.php#L29"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/app/Modules/Ai/AiFormBuilder.php#L334"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/fluentform/tags/6.1.12/boot/globals.php#L438"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3449710/fluentform/trunk/app/Hooks/actions.php"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/00192a36-4b75-4dae-9a6e-0afb02ed5bad?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,*]"}}], "product": "fluent_forms_\u2013_customizable_contact_forms,_survey,_quiz,_&_conversational_form_builder", "vendor": "techjewel"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "product": "wordpress", "vendor": "wordpress"}], "analysis": {"en": {"generated_at": "2026-04-16T06:57:14.526207+00:00", "value": {"mitigation_remediation": ["Update Fluent Forms to a version newer than 6.1.14 when available", "Temporarily disable the AI Form Builder feature until an official patch is released", "Scan existing forms for injected scripts and manually remove any harmful code", "Review role permissions to ensure only trusted users have access to the AI form endpoint"], "summary": {"action": "Apply Patch", "impact": "Stored XSS"}, "threat_synthesis": {"affected_systems": "All installations of techjewel\u2019s Fluent Forms \u2013 Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin built up to and including version 6.1.14 are affected. Any WordPress site that incorporates this plugin and grants Subscriber or higher access can be impacted.", "description_and_impact": "The Fluent Forms plugin for WordPress contains a stored cross-site scripting flaw in its AI Form Builder module. The vulnerability arises from missing authorization checks, a leaked nonce, and inadequate input sanitization, allowing authenticated users with Subscriber role or higher to trigger an AI form generation endpoint that returns raw JavaScript. Since the plugin fails to escape the response, the resulting script is stored and executed whenever any visitor loads the form, giving attackers the ability to run arbitrary code in the context of all site users.", "risk_and_exploitability": "The CVSS score of 6.4 indicates medium severity, while the EPSS score below 1% suggests a very low likelihood of exploitation. The vulnerability is not listed in CISA\u2019s Known Exploited Vulnerabilities catalog. An attacker only needs authenticated access at the Subscriber level or higher. After exploiting the flaw, the injected JavaScript runs for every user who views the compromised form, potentially leading to session hijacking, data theft, or defacement."}}}}, "created": "2026-02-10T12:23:38.663187+00:00", "updated": "2026-04-16T07:00:10.999744+00:00", "vendors": ["techjewel", "techjewel$PRODUCT$fluent_forms_\u2013_customizable_contact_forms,_survey,_quiz,_&_conversational_form_builder", "wordpress", "wordpress$PRODUCT$wordpress"]}