CVE-2026-4935 | OttoKit Plugin up to 1.1.22 on WordPress sql injection

May 8, 2026 Yanac

A vulnerability marked as critical has been reported in OttoKit Plugin up to 1.1.22 on WordPress. Impacted is an unknown function. Performing a manipulation results in sql injection.

This vulnerability is reported as CVE-2026-4935. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More