CVE-2026-4375
Description
The DoLeads Integrator WordPress plugin through 0.65, wp2epub WordPress plugin through 0.65 have been seen to be used to achieve RCE, once they are added adding to a blog, for example using a vulnerability where unclosed extensions from wordpress.org can be installed by unauthorized users.
Metadata
Severity & Metrics
No CVSS data available.
Affected products (2)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| Unknown | DoLeads Integrator | — | 0 ≤ 0.65 |
| Unknown | wp2epub | — | 0 ≤ 0.65 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| — | cna | CWE-94 Improper Control of Generation of Code ('Code Injection') |