Tag

CVE-2026-5229

1 brief RSS

WordPress Form Notify Plugin Authentication Bypass Vulnerability (CVE-2026-5229)

The Form Notify plugin for WordPress is vulnerable to CVE-2026-5229, an authentication bypass, due to trusting user-controlled cookie data after a LINE OAuth login, allowing unauthenticated attackers to gain administrative access.

Form Notify <= 1.1.10 authentication-bypass wordpress plugin CVE-2026-5229

2r 1t 1c 1h ago