CVE-2026-5110 | Gravity Forms Plugin up to 2.10.0 on WordPress failed_state_validation cross site scripting

A vulnerability described as problematic has been identified in Gravity Forms Plugin up to 2.10.0 on WordPress. The affected element is the function failed_state_validation. Such manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-5110. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More