CVE-2026-42674 | AAM Plugin Advanced Access Manager Plugin up to 7.1.0 on WordPress authentication spoofing

Inserito da Angelo Barbosa | Giu 1, 2026 | CVE

A vulnerability marked as critical has been reported in AAM Plugin Advanced Access Manager Plugin up to 7.1.0 on WordPress. Affected is an unknown function. Performing a manipulation results in authentication bypass by spoofing.

This vulnerability is reported as CVE-2026-42674. The attack is possible to be carried out remotely. No exploit exists.

CVE-2026-42674 | AAM Plugin Advanced Access Manager Plugin up to 7.1.0 on WordPress authentication spoofing

Post correlati

CVE-2025-24526 | Mattermost up to 9.11.7/10.1.3/10.2.2/10.3.2/10.4.1 Archived Channel authorization

CVE-2026-0685 | Edgewall Genshi special elements used in a template engine

CVE-2024-6163 | Checkmk up to 2.0.0p39/2.1.0p45/2.2.0p30/2.3.0p10 HTTP Endpoint authentication spoofing

CVE-2024-9862 | miniOrange OTP Verification with Firebase Plugin up to 3.6.0 on WordPress unverified password change