CVE-2026-1074 | WP App Bar Plugin up to 1.5 on WordPress Setting App_Bar_Settings app-bar-features authorization

Inserito da Angelo Barbosa | Mar 6, 2026 | CVE

A vulnerability labeled as critical has been found in WP App Bar Plugin up to 1.5 on WordPress. Affected by this issue is the function App_Bar_Settings of the component Setting Handler. The manipulation of the argument app-bar-features results in missing authorization.

This vulnerability was named CVE-2026-1074. The attack may be performed from remote. There is no available exploit.

CVE-2026-1074 | WP App Bar Plugin up to 1.5 on WordPress Setting App_Bar_Settings app-bar-features authorization

Post correlati

CVE-2024-40334 | idcCMS 1.35 serverFile_deal.php cross-site request forgery

CVE-2023-38944 | Multilaser RE160V/RE163V 12.03.01.09_pt/12.03.01.10_pt Web Management Interface RouterCfm.cfg access control

CVE-2025-22585 | themebon Ultimate Image Hover Effects Plugin up to 1.1.2 on WordPress cross site scripting

CVE-2025-10432 | Tenda AC1206 15.03.06.23 HTTP Request /goform/AdvSetMacMtuWa check_param_changed wanMTU stack-based overflow