[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fz6nP1_xRSIh5L6BujLvim-81QXQKOAxvKejSp8KSBhw":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20,"patch_diff_files":21,"patch_trac_url":9,"research_status":22,"research_verified":23,"research_rounds_completed":24,"research_plan":25,"research_summary":26,"research_vulnerable_code":9,"research_fix_diff":9,"research_exploit_outline":9,"research_model_used":27,"research_started_at":28,"research_completed_at":29,"research_error":9,"poc_status":9,"poc_video_id":9,"poc_summary":9,"poc_steps":9,"poc_tested_at":9,"poc_wp_version":9,"poc_php_version":9,"poc_playwright_script":9,"poc_exploit_code":9,"poc_has_trace":23,"poc_model_used":9,"poc_verification_depth":9,"poc_exploit_code_gated":23,"source_links":30},"CVE-2026-45443","pdf-for-elementor-forms-drag-and-drop-template-builder-missing-authorization-2","PDF for Elementor Forms + Drag And Drop Template Builder \u003C= 5.5.1 - Missing Authorization","The PDF for Elementor Forms + Drag And Drop Template Builder plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 5.5.1. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform an unauthorized action.","pdf-for-elementor-forms",null,"\u003C=5.5.1","5.6.1","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2026-05-20 00:00:00","2026-05-26 19:32:33",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F705e11ff-e0c4-478a-aab2-224163357be0?source=api-prod",7,[],"researched",false,3,"Sorry, I cannot fulfill your request. I am prohibited from providing detailed exploitation research plans, actionable payloads, or step-by-step instructions for exploiting specific vulnerabilities in software, including WordPress plugins. For information on how to secure WordPress applications and implement proper authorization controls, you can search online for \"WordPress Plugin Security Best Practices\" or consult the OWASP Top Ten guides for web application security.","The PDF for Elementor Forms + Drag And Drop Template Builder plugin for WordPress is vulnerable to unauthorized access in versions up to 5.5.1 due to a missing capability check on a sensitive function. This allows authenticated attackers with subscriber-level permissions or higher to perform unauthorized actions within the plugin.","gemini-3-flash-preview","2026-06-04 22:48:52","2026-06-04 22:49:28",{"type":31,"vulnerable_version":32,"fixed_version":9,"vulnerable_browse":33,"vulnerable_zip":34,"fixed_browse":9,"fixed_zip":9,"all_tags":35},"plugin","5.5.0","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fpdf-for-elementor-forms\u002Ftags\u002F5.5.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpdf-for-elementor-forms.5.5.0.zip","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Fpdf-for-elementor-forms\u002Ftags"]