Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Simple History Allows Access to Sensitive Data
CVE-2026-39473
Summary
The Simple History plugin for WordPress allows sensitive information to be embedded in data sent to users. If not handled properly, this can lead to sensitive data being accessed by unauthorized users. Update to the latest version of Simple History to fix this issue.
Original title
Insertion of Sensitive Information Into Sent Data vulnerability in Pär Thernström Simple History simple-history allows Retrieve Embedded Sensitive Data.This issue affects Simple History: from n/a t...
Original description
Insertion of Sensitive Information Into Sent Data vulnerability in Pär Thernström Simple History simple-history allows Retrieve Embedded Sensitive Data.This issue affects Simple History: from n/a through <= 5.24.0.
Vulnerability type
CWE-201
Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 8 Apr 2026