CVE-2026-1916 | WPGSI Plugin up to 3.8.3 on WordPress REST Endpoint wpgsi_callBackFuncAccept/wpgsi_callBackFuncUpdate authorization

February 24, 2026 Yanac

A vulnerability was found in WPGSI Plugin up to 3.8.3 on WordPress. It has been classified as critical. This issue affects the function wpgsi_callBackFuncAccept/wpgsi_callBackFuncUpdate of the component REST Endpoint. The manipulation leads to missing authorization.

This vulnerability is documented as CVE-2026-1916. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More