CVE-2026-14487 | tombgtn Simple Coherent Form Plugin up to 2.4.13 Removal Endpoint removeUploadDir unrestricted upload

SecurityVulns

A vulnerability identified as critical has been detected in tombgtn Simple Coherent Form Plugin up to 2.4.13. This affects the function removeUploadDir of the component Removal Endpoint. The manipulation leads to unrestricted upload.

This vulnerability is listed as CVE-2026-14487. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More