VYPR

News Element Elementor Blog Magazine

by WordPress

CVEs (1)

  • CVE-2026-2284MedFeb 19, 2026
    risk 0.35cvss 5.4epss 0.00

    The News Element Elementor Blog Magazine plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.0.8. This is due to a missing capability check and nonce verification on the 'ne_clean_data' AJAX action. This makes it possible for…