CVE-2026-5063 | webaways NEX-Forms Plugin up to 9.1.11 on WordPress POST Parameter submit_nex_form cross site scripting

A vulnerability identified as problematic has been detected in webaways NEX-Forms Plugin up to 9.1.11 on WordPress. The impacted element is the function submit_nex_form of the component POST Parameter Handler. Performing a manipulation results in cross site scripting.

This vulnerability was named CVE-2026-5063. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More