HIGH
CodeRevolution
CVE published 2026-05-28
CVE-2026-9009
CVE-2026-9009 documents a Remote Code Execution vulnerability in the Crawlomatic Multipage Scraper Post Generator WordPress plugin, affecting all versions up to and including 2.7.2. The vulnerability was published on 2026-05-28 and modified later the same day. The root cause is insufficient validation of user-supplied input in the plugin's shortcode handler. Specifically, the `filter_content` function pas [truncated]