CVE-2026-39527 | sc Internet Vivoo WpStream Plugin up to 4.11.1 on WordPress unrestricted upload

Inserito da Angelo Barbosa | Giu 16, 2026 | CVE

A vulnerability was found in sc Internet Vivoo WpStream Plugin up to 4.11.1 on WordPress. It has been rated as critical. Impacted is an unknown function. This manipulation causes unrestricted upload.

This vulnerability is registered as CVE-2026-39527. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-39527 | sc Internet Vivoo WpStream Plugin up to 4.11.1 on WordPress unrestricted upload

Post correlati

CVE-2024-1856 | Progress Telerik Reporting prior 18.0.24.130 deserialization

CVE-2024-2033 | Video Conferencing with Zoom Plugin up to 4.4.5 on WordPress information disclosure

CVE-2025-5996 | GitLab Community Edition/Enterprise Edition up to 17.10.6/17.11.2/18.0.0 allocation of resources (Issue 476671)

CVE-2024-1732 | Sharkdropship for AliExpress Dropshipping and Affiliate Plugin Post Deletion authorization