A vulnerability was found in bgermann CformsII Plugin up to 15.1.3 on WordPress. It has been declared as problematic . This vulnerability affects unknown code. Such manipulation leads to cross-site request forgery. This vulnerability is listed as CVE-2026-39436 . The attack may be performed from remote. There is no available exploit.