Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
WordPress Plugin 'Easy Table of Contents' Allows Unauthenticated File Upload
BELL-CVE-2026-27139
Summary
A security issue affects the 'Easy Table of Contents' plugin for WordPress, allowing attackers to upload files without authentication. This could lead to unauthorized access to the website or the execution of malicious code. To protect your site, update the plugin to the latest version or remove it if not essential.
What to do
- Update bellsoft go to version 1.26.0-r0.
- Update go to version 1.26.0-r0.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| bellsoft | go | > 1.20.5-r2 , <= 1.26.0-r0 | 1.26.0-r0 |
| – | go | > 1.20.5-r2 , <= 1.26.0-r0 | 1.26.0-r0 |
Original title
BELL-CVE-2026-27139
- https://docs.bell-sw.com/security/cves/CVE-2026-27139 Vendor Advisory
Published: 6 Mar 2026 · Updated: 13 Mar 2026 · First seen: 7 Mar 2026