CVE-2026-3489 | designinvento DirectoryPress Plugin up to 3.6.26 on WordPress packages sql injection (EUVD-2026-23223)

A vulnerability was found in designinvento DirectoryPress Plugin up to 3.6.26 on WordPress. It has been declared as critical. This impacts an unknown function. Executing a manipulation of the argument packages can lead to sql injection.

This vulnerability is handled as CVE-2026-3489. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More