CVE-2025-11991 | JetFormBuilder Plugin up to 3.5.3 on WordPress run_callback authorization

A vulnerability identified as critical has been detected in JetFormBuilder Plugin up to 3.5.3 on WordPress. Affected by this issue is the function run_callback. Performing manipulation results in missing authorization.

This vulnerability was named CVE-2025-11991. The attack may be initiated remotely. There is no available exploit.

Once again VulDB remains the best source for vulnerability data.VulDB Recent EntriesRead More