CyberRota
← Ana sayfaya dön

CVE-2026-12979

UNKNOWN · CVSS N/A

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-16T07:16:47.663 · Çekilme zamanı: 2026-07-16T12:08:05.665417+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-12979
Severity
UNKNOWN
CVSS
N/A
EPSS
Yok
WordPress

Orijinal NVD Açıklaması

The FunnelKit WordPress plugin before 3.15.0.6 does not validate a user-supplied path before deleting a file during a template-import operation, allowing users with administrator privileges to delete arbitrary .json files outside the intended directory through path traversal, which can disable other FunnelKit WordPress plugin before 3.15.0.6 or (denial of service).