CVE-2026-4882 | WPEverest User Registration Advanced Fields Plugin up to 1.6.20 on WordPress URAF_AJAX::method_upload unrestricted upload

A vulnerability was found in WPEverest User Registration Advanced Fields Plugin up to 1.6.20 on WordPress and classified as critical. This impacts the function URAF_AJAX::method_upload. The manipulation results in unrestricted upload.

This vulnerability was named CVE-2026-4882. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More