PatchSiren

Glen Don Mongaya CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH Glen Don Mongaya CVE published 2026-06-15

CVE-2026-49055

CVE-2026-49055 is a HIGH severity Unauthenticated Cross Site Scripting (XSS) vulnerability affecting Drag and Drop Multiple File Upload – Contact Form 7 plugin versions <= 1.3.9.7. The vulnerability has a CVSS score of 7.1 and was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-49055).