Medium severity6.5NVD Advisory· Published Jun 9, 2023· Updated Apr 8, 2026
CVE-2023-0694
CVE-2023-0694
Description
The Metform Elementor Contact Form Builder for WordPress is vulnerable to Information Disclosure via the 'mf' shortcode in versions up to, and including, 3.3.1. This allows authenticated attackers, with subscriber-level capabilities or above to obtain sensitive information about any standard form field of any form submission.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:wpmet:metform_elementor_contact_form_builder:*:*:*:*:*:wordpress:*:*Range: <=3.3.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.