A vulnerability classified as critical was found in crmperks Database for Contact Form 7, WPforms, Elementor Forms Plugin up to 1.5.1 on WordPress. Impacted is the function view_page of the file wp-config.php of the component JSON Handler . The manipulation results in path traversal. This vulnerability was named CVE-2026-9843 . The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.