Mailercloud Webforms May Allow Unsecured Access to Sensitive Data

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Mailercloud Webforms May Allow Unsecured Access to Sensitive Data

CVE-2026-39713

Summary

An issue in Mailercloud's webform integration feature allows unauthorized access to sensitive data. This is a concern for businesses that use Mailercloud to collect and manage contact information from their website. To fix this, update to the latest version of Mailercloud (1.0.8 or later) to ensure secure access controls are in place.

Original title

Missing Authorization vulnerability in mailercloud Mailercloud – Integrate webforms and synchronize website contacts mailercloud-integrate-webforms-synchronize-contacts allows Exploiting Inco...

Original description

Missing Authorization vulnerability in mailercloud Mailercloud – Integrate webforms and synchronize website contacts mailercloud-integrate-webforms-synchronize-contacts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mailercloud – Integrate webforms and synchronize website contacts: from n/a through <= 1.0.7.

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/mailercloud-integrate-webforms-...

Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 8 Apr 2026