CYBERHAWK / CVE / CVE-2026-5113

CVE-2026-5113

Gravity Forms WordPress Plugin

HIGH CVSS 7.2 vibe

The flaw

Stored XSS in Consent field hidden inputs due to flawed state validation.

What to do

Update to version 2.10.1 or later

▸ Scan my repo for CVE-2026-5113

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-05-08 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits