CVE-2026-27984

WordPress Widget Options plugin <= 4.1.3 - Remote Code Execution (RCE) vulnerability

Description

Improper Control of Generation of Code ('Code Injection') vulnerability in Marketing Fire Widget Options widget-options allows Code Injection.This issue affects Widget Options: from n/a through <= 4.1.3.

INFO

Published Date :

2026-03-05T05:54:03.700Z

Last Modified :

2026-03-05T05:54:03.700Z

Source :

Patchstack

AFFECTED PRODUCTS

The following products are affected by CVE-2026-27984 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-27984.

URL	Resource
https://patchstack.com/database/Wordpress/Plugin/widget-options/vulnerability/wordpress-widget-options-plugin-4-1-3-remote-code-execution-rce-vulnerability?_s_id=cve

CVE-2026-27984

WordPress Widget Options plugin <= 4.1.3 - Remote Code Execution (RCE) vulnerability

Description

INFO

2026-03-05T05:54:03.700Z

2026-03-05T05:54:03.700Z

Patchstack

AFFECTED PRODUCTS

REFERENCES

CVSS Vulnerability Scoring System