CVE-2026-5111 | Gravity Forms Plugin up to 2.10.0 on WordPress Product Name validate cross site scripting

A vulnerability, which was classified as problematic, was found in Gravity Forms Plugin up to 2.10.0 on WordPress. Affected is the function validate of the component Product Name Handler. The manipulation results in cross site scripting.

This vulnerability is known as CVE-2026-5111. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More