CVE-2026-1883 | wickedplugins Wicked Folders Plugin up to 4.1.0 on WordPress delete_folders authorization

Inserito da Angelo Barbosa | Mar 15, 2026 | CVE

A vulnerability marked as critical has been reported in wickedplugins Wicked Folders Plugin up to 4.1.0 on WordPress. Impacted is the function delete_folders. This manipulation causes authorization bypass.

This vulnerability appears as CVE-2026-1883. The attack may be initiated remotely. There is no available exploit.

CVE-2026-1883 | wickedplugins Wicked Folders Plugin up to 4.1.0 on WordPress delete_folders authorization

Post correlati

CVE-2024-58019 | Linux Kernel up to 6.12.13/6.13.2 gsp null pointer dereference

CVE-2024-4693 | QEMU Virtio PCI Binding hw/virtio/virtio-pci.c vhost_net_stop operation after expiration

CVE-2026-26377 | Koha up to 25.11 News cross site scripting

CVE-2024-11342 | Skt NURCaptcha Plugin up to 3.5.0 on WordPress cross site scripting