A vulnerability classified as problematic has been found in umarbajwa Landing Page Builder Plugin up to 1.5.3.6 on WordPress. Affected is the function
ulpb_admin_ajax of the component Admin AJAX Handler. Performing a manipulation results in cross-site request forgery.
This vulnerability is known as CVE-2026-12409. Remote exploitation of the attack is possible. No exploit is available.