CVE-2026-5710 - Drag and Drop Multiple File Upload for Contact Form 7 <= 1.3.9.6 - Unauthenticated Limited Arbitrary File Read via mfile Field
CVE ID :CVE-2026-5710 Published : April 17, 2026, 6:16 p.m. | 24 minutes ago Description :The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to Path Traversal leading to Arbitrary File Read in versions up to and including 1.3.9.6. This is due to the pl
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Vercel Says Internal Systems Hit in Breach
- [CYBER] Found and reported a Second-Order SQL Injection in mailcow (CVE-2026-40871) – High severity
- [CYBER] Filtraciones, ingeniería social y malware: así los ciberdelincuentes roban datos personales y bancarios
- [CYBER] Aave records $6 billion TVL drop as Kelp hack exposes structural risk at DeFi lender - CoinDesk
- [CYBER] Aave records $6 billion TVL drop as Kelp hack exposes structural risk at DeFi lender
- [CYBER] aIR-Jumper: exfiltran datos de redes air-gap vía cámaras IR