Medium CVE-2026-8978 The OptinCraft – Drag & Drop Optins & Popup Builder for WordPress plugin for WordPress is vulnerable to generic SQL Injection via the 'order_by' parameter in all versions up to, and including, 1.2.0 due to insufficient escaping on the user supplied parameter and lack of...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

[Medium] CVE-2026-8978 – The OptinCraft – Drag & Drop Optins & Popup Builder for WordPress plugin for Wor...

VERWANDTEARTIKEL

CVE-2026-20245

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

Claude Opus Found a Four-Year-Old Hole in Zcash’s Privacy Layer. Nobody Knows If Someone Already Used It.

CISA Warns of SolarWinds Serv-U Vulnerability Exploited in Attacks

Critical Hugging Face Transformers Vulnerability Enables Remote Code Execution Attacks

[High] CVE-2026-9851 – The Booking Package plugin for WordPress is vulnerable to Privilege Escalation v...