WPDeveloper CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH WPDeveloper CVE published 2026-06-15

CVE-2026-48872

CVE-2026-48872 is a HIGH severity vulnerability (CVSS Score: 7.5) in the EmbedPress plugin versions <= 4.5.2. This vulnerability allows unauthenticated sensitive data exposure. The CVE was published on 2026-06-15T21:17:16.670Z and last modified on 2026-06-15T21:24:32.790Z.

MEDIUM WPDeveloper CVE published 2026-06-15

CVE-2026-25440

CVE-2026-25440 is a MEDIUM severity vulnerability (CVSS Score 5.3) affecting Essential Addons for Elementor versions prior to 6.6.0. The vulnerability is characterized as Unauthenticated Broken Access Control.