The Forminator Forms plugin for WordPress has a security vulnerability that allows attackers to inject malicious code and potentially delete files, access sensitive information, or execute code on a website. This can only happen if there is another plugin or theme with a specific type of code already installed on the site. If this is not the case, then the vulnerability should not have any impact. The vulnerability occurs when a form submission is deleted, either manually or automatically according to the plugin’s settings.