CVE-2026-61955

Hannan · گرویتی فرم فارسی (Persian Gravity Forms)

The Persian Gravity Forms plugin for WordPress contains a blind SQL injection vulnerability that allows authenticated attackers with administrative privileges to compromise the database.

Executive summary

An authenticated SQL injection vulnerability in the Persian Gravity Forms plugin poses a significant risk to database confidentiality and integrity.

Vulnerability

This vulnerability involves improper neutralization of special elements in SQL commands, allowing for blind SQL injection. The attack requires the attacker to hold high privileges (PR:H), such as an administrative account.

Business impact

An attacker who successfully exploits this vulnerability can perform blind SQL injection to extract sensitive information from the WordPress database. The CVSS score of 7.6 indicates high severity, as unauthorized database access can lead to significant data breaches or the alteration of critical site configurations.

Remediation

Immediate Action: Check the vendor’s repository for a security update and apply it immediately; if no patch is available, consider disabling the plugin until a fix is released.

Proactive Monitoring: Review database access logs for suspicious query activity and monitor for unauthorized changes to form data or user configurations.

Compensating Controls: Implement a Web Application Firewall (WAF) to detect and block common SQL injection patterns targeting the plugin's endpoints.

Exploitation status

Public Exploit Available: No (exploit_available: false)

Analyst recommendation

Security teams should audit all administrative accounts to ensure no unauthorized access is being used to leverage this flaw. Update the plugin as soon as the vendor provides a remediation version to eliminate the underlying vulnerability.