CVE-2026-6344 | techjewel Fluent Forms Plugin up to 6.2.1 on WordPress URL getAttachments path traversal

A vulnerability was found in techjewel Fluent Forms Plugin up to 6.2.1 on WordPress. It has been classified as critical. Impacted is the function getAttachments of the component URL Handler. The manipulation leads to path traversal.

This vulnerability is traded as CVE-2026-6344. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More