CVE-2026-3896 | Livemesh SiteOrigin Widgets Plugin up to 3.9.2 on WordPress lsow_admin_ajax authorization

A vulnerability described as critical has been identified in Livemesh SiteOrigin Widgets Plugin up to 3.9.2 on WordPress. Affected is the function lsow_admin_ajax. The manipulation results in missing authorization.

This vulnerability was named CVE-2026-3896. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More