CVE-2026-27387 | designinvento DirectoryPress Plugin up to 3.6.26 on WordPress authorization

Inserito da Angelo Barbosa | Feb 19, 2026 | CVE

A vulnerability classified as critical has been found in designinvento DirectoryPress Plugin up to 3.6.26 on WordPress. This affects an unknown function. The manipulation leads to missing authorization.

This vulnerability is listed as CVE-2026-27387. The attack may be initiated remotely. There is no available exploit.

CVE-2026-27387 | designinvento DirectoryPress Plugin up to 3.6.26 on WordPress authorization

Post correlati

CVE-2024-56010 | PerfOps One Device Detector Plugin up to 4.2.0 on WordPress cross site scripting

CVE-2024-4024 | GitLab Community Edition/Enterprise Edition up to 16.9.5/16.10.3/16.11.0 Bitbucket Credentials improper authentication

CVE-2022-45826 | WP Sunshine Sunshine Photo Cart Plugin up to 2.9.13 on WordPress authorization

CVE-2024-57992 | Linux Kernel up to 6.13.1 denial of service