CVE-2025-10499 | Ninja Forms Plugin up to 3.12.0 on WordPress Setting maybe_opt_in cross-site request forgery

A vulnerability, which was classified as problematic, has been found in Ninja Forms Plugin up to 3.12.0 on WordPress. The affected element is the function maybe_opt_in of the component Setting Handler. Performing manipulation results in cross-site request forgery.

This vulnerability is known as CVE-2025-10499. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More