6.5

CVSS3.1

CVE-2026-1671 - Activity Log for WordPress <= 1.2.8 - Missing Authorization to Sensitive Information Exposure via Lโ€ฆ

The Activity Log for WordPress plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the winter_activity_log_action() function in all versions up to, and including, 1.2.8. This makes it possible for authenticated attackers, with Subscriber-level acceโ€ฆ

๐Ÿ“… Published: Feb. 12, 2026, 12:31 p.m. ๐Ÿ”„ Last Modified: April 8, 2026, 4:55 p.m.

0.0

CVE-2026-26249 -

Not used

๐Ÿ“… Published: Feb. 12, 2026, 12:07 p.m. ๐Ÿ”„ Last Modified: Feb. 13, 2026, 3:55 a.m.

0.0

CVE-2026-26253 -

Not used

๐Ÿ“… Published: Feb. 12, 2026, 12:07 p.m. ๐Ÿ”„ Last Modified: Feb. 13, 2026, 3:55 a.m.

0.0

CVE-2026-26256 -

Not used

๐Ÿ“… Published: Feb. 12, 2026, 12:07 p.m. ๐Ÿ”„ Last Modified: Feb. 13, 2026, 3:55 a.m.

0.0

CVE-2026-26251 -

Not used

๐Ÿ“… Published: Feb. 12, 2026, 12:07 p.m. ๐Ÿ”„ Last Modified: Feb. 13, 2026, 3:55 a.m.

0.0

CVE-2026-26255 -

Not used

๐Ÿ“… Published: Feb. 12, 2026, 12:07 p.m. ๐Ÿ”„ Last Modified: Feb. 13, 2026, 3:55 a.m.

0.0

CVE-2026-26250 -

Not used

๐Ÿ“… Published: Feb. 12, 2026, 12:07 p.m. ๐Ÿ”„ Last Modified: Feb. 13, 2026, 3:55 a.m.

0.0

CVE-2026-26257 -

Not used

๐Ÿ“… Published: Feb. 12, 2026, 12:07 p.m. ๐Ÿ”„ Last Modified: Feb. 13, 2026, 3:55 a.m.

0.0

CVE-2026-26252 -

Not used

๐Ÿ“… Published: Feb. 12, 2026, 12:07 p.m. ๐Ÿ”„ Last Modified: Feb. 13, 2026, 3:55 a.m.

0.0

CVE-2026-26254 -

Not used

๐Ÿ“… Published: Feb. 12, 2026, 12:07 p.m. ๐Ÿ”„ Last Modified: Feb. 13, 2026, 3:55 a.m.
Total resulsts: 343948
Page 1139 of 34,395
ยซ previous page ยป next page
Filters