WordPress Rejects Unfiltered User Input, Leading to Unexpected Behavior

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

WordPress Rejects Unfiltered User Input, Leading to Unexpected Behavior

CVE-2026-27038

Summary

A vulnerability in WordPress allows an attacker to manipulate user input, potentially causing unexpected behavior, such as data corruption or errors. This issue affects WordPress installations where user input is not properly validated. To mitigate the risk, update WordPress to the latest version or ensure that user input is validated correctly.

Original title

Rejected reason: Not used

Original description

Rejected reason: Not used

Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026