CVE-2026-42646 | Steve Burge TaxoPress Plugin up to 3.44.0 on WordPress sql injection

April 29, 2026 Yanac

A vulnerability was found in Steve Burge TaxoPress Plugin up to 3.44.0 on WordPress. It has been classified as critical. This impacts an unknown function. This manipulation causes sql injection.

This vulnerability is tracked as CVE-2026-42646. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2026-42641 | ILLID Share This Image Plugin up to 2.14 on WordPress server-side request forgery
CVE-2026-42642 | StellarWP GiveWP Plugin up to 4.14.5 on WordPress authorization