CVE-2026-5109 | Gravity Forms Plugin up to 2.10.0 on WordPress Order Summary Section view-order-summary.php wp_kses cross site scripting

A vulnerability was found in Gravity Forms Plugin up to 2.10.0 on WordPress and classified as problematic. Affected by this issue is the function wp_kses of the file view-order-summary.php of the component Order Summary Section. Such manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2026-5109. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More