CVE-2026-0718 | wpxpo PostX Plugin up to 5.0.5 on WordPress ultp_shareCount_callback authorization

Inserito da Angelo Barbosa | Apr 16, 2026 | CVE

A vulnerability identified as critical has been detected in wpxpo PostX Plugin up to 5.0.5 on WordPress. This impacts the function ultp_shareCount_callback. The manipulation leads to missing authorization.

This vulnerability is referenced as CVE-2026-0718. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-0718 | wpxpo PostX Plugin up to 5.0.5 on WordPress ultp_shareCount_callback authorization

Post correlati

CVE-2025-8281 | WP Talroo Plugin up to 2.4 on WordPress cross site scripting

CVE-2023-49756 | Eventin Plugin up to 3.3.44 on WordPress authorization

CVE-2024-35108 | idcCMS 1.35 homePro_deal.php cross-site request forgery

CVE-2025-47934 | OpenPGP.js up to 5.11.2/6.1.0 signature verification (GHSA-8qff-qr5q-5pr8)