CVE-2026-4002 | petjeaf Petje.af Plugin up to 2.1.8 on WordPress ajax_revoke_token cross-site request forgery

Inserito da Angelo Barbosa | Apr 15, 2026 | CVE

A vulnerability, which was classified as problematic, was found in petjeaf Petje.af Plugin up to 2.1.8 on WordPress. This impacts the function ajax_revoke_token. Such manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2026-4002. The attack may be launched remotely. There is no exploit available.

CVE-2026-4002 | petjeaf Petje.af Plugin up to 2.1.8 on WordPress ajax_revoke_token cross-site request forgery

Post correlati

CVE-2025-11268 | Strong Testimonials Plugin up to 3.2.16 on WordPress Shortcode Remote Code Execution

CVE-2024-48662 | AdGuard Application up to 7.18.1 fontMatrix cross site scripting

CVE-2024-58045 | Huawei HarmonyOS 5.0.0 Media Digital Copyright Protection Module race condition

CVE-2024-20073 | MediaTek MT6890/MT7622 SDK version 5.0.5.0/before /OpenWRT 19.07/21.02 WLAN Service out-of-bounds write (WCNCR00367704)