CVE-2026-2001 | WowRevenue Plugin up to 2.1.3 on WordPress Plugin Installation install_activate_plugin authorization

Inserito da Angelo Barbosa | Feb 16, 2026 | CVE

A vulnerability was found in WowRevenue Plugin up to 2.1.3 on WordPress. It has been classified as problematic. This affects the function Notice::install_activate_plugin of the component Plugin Installation Handler. This manipulation causes missing authorization.

This vulnerability appears as CVE-2026-2001. The attack may be initiated remotely. There is no available exploit.

CVE-2026-2001 | WowRevenue Plugin up to 2.1.3 on WordPress Plugin Installation install_activate_plugin authorization

Post correlati

CVE-2023-45921 | vim 9.0 File handle_viminfo_register null pointer dereference

CVE-2025-24700 | Xylus Themes WP Event Aggregator Plugin up to 1.8.2 on WordPress cross site scripting

CVE-2024-41445 | mdflib 2.1 mdf4 File ReadData heap-based overflow

CVE-2025-26580 | CompleteWebResources Page Post Specific Social Share Buttons Plugin up to 2.1 on WordPress cross-site request forgery