Filtered by vendor F4 Post Tree
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-9676 | 2 F4 Post Tree, Wordpress | 2 F4 Post Tree, Wordpress | 2026-06-29 | 4.3 Medium |
| The F4 Post Tree WordPress plugin before 2.0.5 does not perform capability checks or CSRF/nonce verification on one of its AJAX actions, allowing authenticated users with Subscriber-level access and above to modify the parent and menu order of arbitrary posts. | ||||
Page 1 of 1.