CVE-2026-9843 | crmperks Database for Contact Form 7, WPforms, Elementor Forms Plugin JSON wp-config.php view_page path traversal

SecurityVulns

A vulnerability classified as critical was found in crmperks Database for Contact Form 7, WPforms, Elementor Forms Plugin up to 1.5.1 on WordPress. Impacted is the function view_page of the file wp-config.php of the component JSON Handler. The manipulation results in path traversal.

This vulnerability was named CVE-2026-9843. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More