-
Byte Open Security
(ByteOS Network)
Log In
Sign Up
Quform
Source -
CNA
CNA CVEs -
1
ADP CVEs -
0
CISA CVEs -
0
NVD CVEs -
0
Related CVEs
Related Vendors
Related Assigners
Reports
1
Vulnerabilities found
CVE-2026-56058
Assigner
-
Patchstack
Share
View Details
Assigner
-
Patchstack
CVSS Score
-
9.9
||
CRITICAL
EPSS
-
0.36% / 28.24%
||
7 Day CHG
~
0.00%
Published
-
26 Jun, 2026 | 14:52
Updated
-
26 Jun, 2026 | 18:17
Rejected
-
Not Available
Known To Be Used In Ransomware Campaigns?
-
Not Available
KEV Added
-
Not Available
KEV Action Due Date
-
Not Available
WordPress Quform plugin <= 2.23.0 - Arbitrary File Upload vulnerability
Subscriber Arbitrary File Upload in Quform <= 2.23.0 versions.
Action
-
Not Available
Vendor
-
ThemeCatcher
Product
-
Quform
CWE ID
-
CWE-434
Unrestricted Upload of File with Dangerous Type