WordPress Plugin Vulnerabilities

SureForms < 2.6.0 - Unauthenticated Payment Amount Validation Bypass via 'form_id'

Description

The plugin is vulnerable to Payment Amount Bypass due to the create_payment_intent() function performing a payment validation solely based on the value of a user-controlled parameter. This makes it possible for unauthenticated attackers to bypass configured form payment-amount validation and create underpriced payment/subscription intents by setting form_id to 0.

Affects Plugins

Plugin icon
sureforms
Fixed in 2.6.0

References

CVE
CVE-2026-4987
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/c4772b32-a730-44f2-b43c-f9bd5abb6541

Miscellaneous

Original Researcher
Jack Pas (Dark.)
Verified
No
WPVDB ID
d227ef52-cbac-4738-9c1b-7db28dc4b3af

Timeline

Publicly Published
2026-03-27 (about 1 month ago)
Added
2026-03-30 (about 1 month ago)
Last Updated
2026-03-30 (about 1 month ago)

Other

Published
Title
Published
2015-02-26
Title
EasyCart 1.1.30 - 3.0.20 - Privilege Escalation
Published
2018-12-13
Title
WordPress <= 5.0 - Authenticated Post Type Bypass
Published
2016-04-25
Title
iThemes Security <= 5.3.5 - Lack of Capability Check
Published
2024-04-22
Title
ProfileGrid < 5.8.3 - Bypass Group Members Limit
Published
2014-08-01
Title
WordPress 3.7.1 & 3.8.1 - Privilege Escalation