Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
WordPress Plugin Allows Unrestricted File Uploads
CVE-2026-26250
Summary
A security issue in a WordPress plugin allows attackers to upload and execute arbitrary files on a website. This could allow them to install malware or take control of the site. To fix this, update the plugin to the latest version.
Original title
Rejected reason: Not used
Original description
Rejected reason: Not used
Published: 13 Feb 2026 · Updated: 10 Mar 2026 · First seen: 6 Mar 2026