2 matches found
CVE-2026-24986 WordPress Simple Membership WP user Import plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in wp.insider Simple Membership WP user Import simple-membership-wp-user-import allows Cross Site Request Forgery.This issue affects Simple Membership WP user Import: from n/a through = 1.9.1...
CVE-2025-49434
Deserialization of Untrusted Data vulnerability in WordPress Cars4Rent Theme/Cars4Rent plugin (CVE-2025-49434) affects Cars4Rent: from n/a through <= 1.4.2. Root cause: PHP object deserialization leading to Object Injection. Impact is rated Critical (CVSS 3.1 base 9.8) with potential HIGH impa...