CVE-2026-2732 | Enable Media Replace Plugin up to 4.1.7 on WordPress load improper authorization

Inserito da Angelo Barbosa | Mar 3, 2026 | CVE

A vulnerability categorized as critical has been discovered in Enable Media Replace Plugin up to 4.1.7 on WordPress. The impacted element is the function RemoveBackGroundViewController::load. Such manipulation leads to improper authorization.

This vulnerability is listed as CVE-2026-2732. The attack may be performed from remote. There is no available exploit.

CVE-2026-2732 | Enable Media Replace Plugin up to 4.1.7 on WordPress load improper authorization

Post correlati

CVE-2024-31573 | xmlunit-core prior 2.10.0 XSLT Stylesheet Parser Privilege Escalation

CVE-2024-3781 | White Bear Solutions WBSAirback 21.02.04 Active Directory os command injection

CVE-2024-56229 | SearchIQ Plugin up to 4.6 on WordPress cross-site request forgery

CVE-2025-34026 | Versa Concerto up to 12.2.0 Internal Actuator Endpoint improper authentication