CyberRota
← Ana sayfaya dön

CVE-2026-12471

MEDIUM · CVSS 4.3 EPSS %0.20

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-27T08:16:44.680 · Çekilme zamanı: 2026-06-30T18:36:30.270660+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-12471
Severity
MEDIUM
CVSS
4.3
EPSS
%0.20
WordPress

Orijinal NVD Açıklaması

The Spexo theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the activate_plugin function in all versions up to, and including, 2.0.11. This makes it possible for authenticated attackers, with Subscriber-level access and above, to activate a limited set of plugins.