QSearchQSearch

CVE-2026-42661

8.8 HIGH

Custom role Path Traversal in WP Customer Area <= 8.3.4 versions

Published: 2026-06-15 · Last updated: 2026-06-15

Severity and scoring

CVSS
8.8 HIGH
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE
CWE-35

Description

Custom role Path Traversal in WP Customer Area <= 8.3.4 versions.

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-52703 Unauthenticated Path Traversal in FastDup <= 2.7.2 versions (9.6 CRITICAL)
  • CVE-2026-49112 Unauthenticated Path Traversal in Shared Files <= 1.7.64 versions (7.5 HIGH)
  • CVE-2026-40128 SAP NetWeaver Application Server Java (Web Container) allows an unauthenticated attacker to craft a malicious HTTP logon request that man... (9.0 CRITICAL)
  • CVE-2026-24315 SAP Fiori Launchpad allows attackers to craft malicious URLs that triggers arbitrary service calls on the Fiori domain, this when opened ... (4.2 MEDIUM)
  • CVE-2026-45661 Dokploy is a free, self-hostable Platform as a Service (PaaS) (9.9 CRITICAL)