Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
WordPress Allows Malicious Code Execution via Rejected Reasons
CVE-2026-27031
Summary
A security issue in WordPress can allow hackers to inject and execute malicious code on a website. This can lead to unauthorized access and potentially allow attackers to steal sensitive information or take control of the site. WordPress users should update their installations to the latest version to fix this issue.
Original title
Rejected reason: Not used
Original description
Rejected reason: Not used
Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026