CVE-2026-3155 | OneSignal Plugin up to 3.8.0 on WordPress authorization (EUVD-2026-23219)

April 16, 2026 Yanac

A vulnerability was found in OneSignal Plugin up to 3.8.0 on WordPress. It has been classified as problematic. This affects an unknown function. Performing a manipulation results in missing authorization.

This vulnerability is known as CVE-2026-3155. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More

CVE-2026-3489 | designinvento DirectoryPress Plugin up to 3.6.26 on WordPress packages sql injection (EUVD-2026-23223)
CVE-2026-31843 | goodoneuz pay-uz up to 2.2.24 Endpoint update Route::any access control