CVE-2026-4375 - CERT CVE
ID CVE-2026-4375
Sažetak The DoLeads Integrator WordPress plugin through 0.65, wp2epub WordPress plugin through 0.65 have been seen to be used to achieve RCE, once they are added adding to a blog, for example using a vulnerability where unclosed extensions from wordpress.org can be installed by unauthorized users.
Reference
CVSS
Base: 9.0
Impact: 6.0
Exploitability:2.2
Pristup
VektorSloženostAutentikacija
NETWORK HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Zadnje važnije ažuriranje 07-07-2026 - 14:16
Objavljeno 07-07-2026 - 06:16