CVE-2026-11781
The CVE affects the Adminify WordPress plugin prior to 4.2.10. Root cause: missing per-user read-capability checks on an administration search feature, enabling a Contributor to disclose non-public content. Impact includes other authors’ unpublished post titles, pending comment content, Adminify ...