CVE-2026-1233 | mvirik Text to Speech Plugin up to 1.9.8 on WordPress Mementor_TTS_Remote_Telemetry hard-coded credentials

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability described as critical has been identified in mvirik Text to Speech Plugin up to 1.9.8 on WordPress. The impacted element is the function Mementor_TTS_Remote_Telemetry. Executing a manipulation can lead to hard-coded credentials.

This vulnerability appears as CVE-2026-1233. The attack may be performed from remote. There is no available exploit.

CVE-2026-1233 | mvirik Text to Speech Plugin up to 1.9.8 on WordPress Mementor_TTS_Remote_Telemetry hard-coded credentials

Post correlati

CVE-2024-50704 | Uniguest Tripleplay up to 24.2.0 HTTP POST Request Remote Code Execution

CVE-2024-38465 | Shenzhen Guoxin Synthesis Image System up to 8.2.x Username information exposure

CVE-2026-2662 | FascinatedBox lily up to 2.3 src/lily_emitter.c count_transforms out-of-bounds (Issue 381)

CVE-2025-65300 | Coohom SaaS Platform 2025-10-28 Account Settings City/State/Country/Region cross site scripting