CVE-2026-6441 | flightbycanto Canto Plugin up to 3.1.1 on WordPress class-canto.php updateOptions authorization

A vulnerability was found in flightbycanto Canto Plugin up to 3.1.1 on WordPress. It has been declared as critical. Affected by this vulnerability is the function updateOptions of the file class-canto.php. Such manipulation leads to missing authorization.

This vulnerability is listed as CVE-2026-6441. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More