2 matches found
CVE-2026-3478
creationtimestamp| type| source ---|---|--- 2026-03-21 04:30:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116265282936495501 2026-03-21 04:30:30+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mhk73in3dg2u 2026-03-31 19:56:04+00:00| seen|...
CVE-2026-3478
The Content Syndication Toolkit plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.3 via the reduxp AJAX action in the bundled ReduxFramework library. The plugin registers a proxy endpoint wpajaxnoprivreduxp that is accessible to...