CVE-2026-15008 - Uncanny Automator <= 7.3.1.4 - Unauthenticated PHP Object Injection to Arbitrary File Deletion via Forminator Submitted-Field Token
CVE ID :CVE-2026-15008 Published : July 16, 2026, 9:16 a.m. | 1 hour, 18 minutes ago Description :The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in...