The vulnerability of the Fresh Framework plugin of the WordPress content management system allows a hacker to execute arbitrary code.

The vulnerability of the Fresh Framework plugin for WordPress content management systems is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2025-26936 WordPress Fresh Framework plugin <= 1.70.0 - Unauthenticated Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in FRESHFACE Fresh Framework fresh-framework allows Code Injection.This issue affects Fresh Framework: from n/a through = 1.70.0...