WordPress Plugin Allows Unauthenticated Access to Sensitive Data

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

WordPress Plugin Allows Unauthenticated Access to Sensitive Data

CVE-2026-26298

Summary

An issue in a popular WordPress plugin could allow unauthorized users to view sensitive information. This affects websites that use the affected plugin, potentially compromising sensitive data. Update the plugin to the latest version to prevent unauthorized access.

Original title

Rejected reason: Not used

Original description

Rejected reason: Not used

Published: 14 Feb 2026 · Updated: 10 Mar 2026 · First seen: 6 Mar 2026