CVE-2026-1051 | Newsletter Plugin up to 9.1.0 on WordPress hook_newsletter_action cross-site request forgery

Inserito da Angelo Barbosa | Gen 19, 2026 | CVE

A vulnerability was found in Newsletter Plugin up to 9.1.0 on WordPress. It has been rated as problematic. Impacted is the function hook_newsletter_action. Performing a manipulation results in cross-site request forgery.

This vulnerability is known as CVE-2026-1051. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-1051 | Newsletter Plugin up to 9.1.0 on WordPress hook_newsletter_action cross-site request forgery

Post correlati

CVE-2024-2162 | Kiloview NDI os command injection

CVE-2024-5020 | Photo Gallery, Sliders, Proofing and Themes Plugin FancyBox JavaScript Library cross site scripting

CVE-2025-9365 | Fuji Electric FRENIC-Loader 4 prior 1.4.0.1 deserialization (icsa-25-245-02)

CVE-2025-40640 | Status Tracker Energy CRM 2025 Query create_invoice_submit.php customerName_0 cross site scripting