CVE-2026-5737 | bensibley Independent Analytics Plugin up to 2.14.9 on WordPress /wp-json/iawp/search wp_safe_remote server-side request forgery

Inserito da Angelo Barbosa | Mag 28, 2026 | CVE

A vulnerability marked as critical has been reported in bensibley Independent Analytics Plugin up to 2.14.9 on WordPress. This impacts the function wp_safe_remote of the file /wp-json/iawp/search. Performing a manipulation results in server-side request forgery.

This vulnerability was named CVE-2026-5737. The attack may be initiated remotely. There is no available exploit.

CVE-2026-5737 | bensibley Independent Analytics Plugin up to 2.14.9 on WordPress /wp-json/iawp/search wp_safe_remote server-side request forgery

Post correlati

CVE-2024-22430 | Dell PowerScale OneFS up to 9.6.0.x default permission (dsa-2024-028)

CVE-2023-35633 | Microsoft unknown vulnerability

CVE-2024-9325 | Intelbras InControl up to 2.21.56 incontrol-service-watchdog.exe unquoted search path

CVE-2024-34122 | Microsoft Edge up to 126.0.2592.68 Remote Code Execution