CVE-2026-0686 | pfefferle Webmention Plugin up to 5.6.2 on WordPress MF2::parse_authorpage server-side request forgery

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability, which was classified as critical, has been found in pfefferle Webmention Plugin up to 5.6.2 on WordPress. This issue affects the function MF2::parse_authorpage. Performing a manipulation results in server-side request forgery.

This vulnerability is identified as CVE-2026-0686. The attack can be initiated remotely. There is not any exploit available.

CVE-2026-0686 | pfefferle Webmention Plugin up to 5.6.2 on WordPress MF2::parse_authorpage server-side request forgery

Post correlati

CVE-2024-38143 | Microsoft unknown vulnerability

CVE-2020-37063 | Weird-Solutions TFTP Turbo 4.6.1273 Service unquoted search path (Exploit 48085 / EDB-48085)

CVE-2024-50837 | Kashipara E-Learning Management System Project 1.0 HTTP POST Request admin_user.php firstname/username cross site scripting

CVE-2024-53253 | Getsentry Sentry 24.11.0 Search select_requester.py information exposure (GHSA-v5h2-q2w4-gpcx)