CVE-2026-2515 | Hostinger Reach Plugin up to 1.3.8 on WordPress handle_ajax_action authorization

Inserito da Angelo Barbosa | Mag 13, 2026 | CVE

A vulnerability identified as problematic has been detected in Hostinger Reach Plugin up to 1.3.8 on WordPress. Affected is the function handle_ajax_action. This manipulation causes missing authorization.

This vulnerability is registered as CVE-2026-2515. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-2515 | Hostinger Reach Plugin up to 1.3.8 on WordPress handle_ajax_action authorization

Post correlati

AMI AptioV BIOS input validation

CVE-2026-27750 | Gen Digital Avira Internet Security up to 1.1.109.1990 Optimizer toctou

CVE-2024-3074 | Elementor ImageBox Plugin up to 1.2.8 on WordPress cross site scripting

CVE-2024-45474 | Siemens Tecnomatix Plant Simulation V2404 prior 2302.0016 WRL File memory corruption (ssa-583523)