These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
A HIGH severity vulnerability, CVE-2026-49068, was found in Coupon Affiliates versions up to 7.8.1. This vulnerability exposes subscriber sensitive data. The CVSS score for this vulnerability is 7.5.
CVE-2026-40799 is a MEDIUM severity vulnerability in Simple Cloudflare Turnstile plugin versions <= 1.38.0. The vulnerability is caused by unauthenticated broken authentication. The CVSS score is 5.3.
CVE-2026-40770 is a HIGH severity Unauthenticated Cross Site Scripting (XSS) vulnerability in Coupon Affiliates plugin versions <= 7.5.3. The vulnerability has a CVSS score of 7.1 and was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-40770).