PatchSiren

tychesoftwares CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL tychesoftwares CVE published 2026-06-15

CVE-2026-42386

CVE-2026-42386 is a critical unauthenticated SQL injection vulnerability in the Order Delivery Date for WooCommerce plugin. The vulnerability has a CVSS score of 9.3 and was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-42386). The affected plugin versions are <= 4.5.1.