CVE-2026-48879 | Sergey AIWU Plugin up to 1.4.17 on WordPress privileges assignment

Inserito da Angelo Barbosa | Giu 1, 2026 | CVE

A vulnerability, which was classified as critical, was found in Sergey AIWU Plugin up to 1.4.17 on WordPress. The affected element is an unknown function. Such manipulation leads to incorrect privilege assignment.

This vulnerability is referenced as CVE-2026-48879. It is possible to launch the attack remotely. No exploit is available.

CVE-2026-48879 | Sergey AIWU Plugin up to 1.4.17 on WordPress privileges assignment

Post correlati

CVE-2025-7730 | Bold Page Builder Plugin up to 5.4.5 on WordPress percentage cross site scripting

CVE-2024-37741 | OpenPLC up to 9cd8f1b Profile Picture cross site scripting (Issue 242)

CVE-2026-32612 | Statamic CMS up to 6.6.1 cross site scripting

CVE-2024-20351 | Cisco Firepower Threat Defense Software Snort resource consumption (cisco-sa-sa-ftd-snort-fw-BCJTZPMu)