CVE-2026-40737 | VillaTheme COMPE Plugin up to 1.1.4 on WordPress authorization

April 15, 2026 Yanac

A vulnerability, which was classified as critical, was found in VillaTheme COMPE Plugin up to 1.1.4 on WordPress. This issue affects some unknown processing. The manipulation results in authorization bypass.

This vulnerability is reported as CVE-2026-40737. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2026-40744 | Beaver Builder Plugin up to 2.10.1.2 on WordPress sql injection
CVE-2026-40740 | Themeum Tutor LMS Plugin up to 3.9.7 on WordPress authorization