2 matches found
CVE-2026-2488
creationtimestamp| type| source ---|---|--- 2026-03-07 03:15:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mggue6pzdg2o...
CVE-2026-2488
CVE-2026-2488 refers to a ProfileGrid plugin vulnerability for WordPress where a missing capability check in pg_delete_msg() allows authenticated users with Subscriber+ privileges to delete arbitrary messages. Affected versions up to and including 5.9.8.1 are exploitable. Wordfence and related fe...