CyberRota
← Ana sayfaya dön

CVE-2026-7859

MEDIUM · CVSS 5.3 EPSS %0.12

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-22T06:16:25.437 · Çekilme zamanı: 2026-06-30T18:29:01.267620+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-7859
Severity
MEDIUM
CVSS
5.3
EPSS
%0.12
WordPress

Orijinal NVD Açıklaması

The Motors WordPress plugin before 1.4.110 does not have proper authorisation and CSRF checks on one of its AJAX actions, allowing unauthenticated attackers to modify arbitrary post metadata, such as the gallery, featured image and, on WooCommerce sites, product prices.