CVE-2026-15159 | SaturdayDrive Ninja Forms Plugin up to 3.3.6 on WordPress Excel Export spreadsheet_export_form_id resource injection
A vulnerability, which was classified as problematic, was found in SaturdayDrive Ninja Forms Plugin up to 3.3.6 on WordPress. The impacted element is an unknown function of the component Excel Export. Executing a manipulation of the argument spreadsheet_export_form_id can lead to improper control of resource identifiers.
This vulnerability appears as CVE-2026-15159. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More