A vulnerability classified as problematic has been found in WordPress MultiSocialReviewPlugin up to 1.2. The affected element is an unknown function of the component Directly Web-Accessible API Endpoint. Performing a manipulation of the argument option/value results in password hash with insufficient computational effort.
This vulnerability is reported as CVE-2026-14482. The attack is possible to be carried out remotely. No exploit exists.