CVE-2026-7465 | brainstormforce Spectra Gutenberg Blocks Plugin up to 2.19.25 on WordPress call_user_func render_callback privileges management

Inserito da Angelo Barbosa | Mag 30, 2026 | CVE

A vulnerability identified as critical has been detected in brainstormforce Spectra Gutenberg Blocks Plugin up to 2.19.25 on WordPress. This vulnerability affects the function call_user_func. Performing a manipulation of the argument render_callback results in improper privilege management.

This vulnerability is known as CVE-2026-7465. Remote exploitation of the attack is possible. No exploit is available.

You should upgrade the affected component.

CVE-2026-7465 | brainstormforce Spectra Gutenberg Blocks Plugin up to 2.19.25 on WordPress call_user_func render_callback privileges management

Post correlati

CVE-2025-1026 | Spatie browsershot up to 5.0.4 URL Validation setUrl file inclusion (SNYK-PHP-SPATIEBROWSERSHOT-8533024)

CVE-2024-37054 | MLflow 0.9.0 deserialization

CVE-2024-23941 | Intermesh Group Office up to 6.6.181/6.7.63/6.8.30 cross site scripting

CVE-2024-0545 | CodeCanyon RISE Rise Ultimate Project Manager 3.5.3 /index.php/signin redirect