CVE-2026-6963 | shahariaazam WP Mail Gateway Plugin up to 1.8 on WordPress Setting wmg_save_provider_config authorization

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability was found in shahariaazam WP Mail Gateway Plugin up to 1.8 on WordPress. It has been rated as critical. Affected by this issue is the function wmg_save_provider_config of the component Setting Handler. Performing a manipulation results in missing authorization.

This vulnerability is identified as CVE-2026-6963. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2026-6963 | shahariaazam WP Mail Gateway Plugin up to 1.8 on WordPress Setting wmg_save_provider_config authorization

Post correlati

CVE-2026-5646 | code-projects Easy Blog Site 1.0 login.php username/password sql injection

CVE-2023-53261 | Linux Kernel up to 6.5.2 coresight acpi_get_dsd_graph memory leak

CVE-2024-43242 | azzaroco Ultimate Membership Pro Plugin up to 12.6 on WordPress deserialization

CVE-2025-3600 | Progress Telerik UI for ASP.NET AJAX up to 2025.1.218 denial of service