CVE-2026-3124 | wpchill Download Monitor Plugin up to 5.1.7 on WordPress executePayment authorization

Inserito da Angelo Barbosa | Mar 30, 2026 | CVE

A vulnerability identified as critical has been detected in wpchill Download Monitor Plugin up to 5.1.7 on WordPress. Impacted is the function executePayment. This manipulation causes authorization bypass.

The identification of this vulnerability is CVE-2026-3124. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-3124 | wpchill Download Monitor Plugin up to 5.1.7 on WordPress executePayment authorization

Post correlati

CVE-2023-44252 | Fortinet FortiWAN up to 5.1.2/5.2.1 JWT Token improper authentication (FG-IR-23-061)

CVE-2025-39729 | Linux Kernel up to 6.16.0 crypto sev-dev.c __sev_platform_init_locked uninitialized pointer

CVE-2025-48373 | schule111 Schule up to 1.0.0 API Response index.js authorization (GHSA-37h9-qq7c-6mc9)

CVE-2025-54881 | mermaid up to 11.9.0 cross site scripting (GHSA-7rqq-prvp-x9jh)