CYBERHAWK / CVE / CVE-2026-2052

CVE-2026-2052

Widget Options Plugin

HIGH CVSS 8.8 vibe

The flaw

Remote code execution via eval() on user-supplied Display Logic expressions with insufficient filtering.

What to do

Update WordPress Widget Options plugin to version 4.2.3 or later

▸ Scan my repo for CVE-2026-2052

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-05-08 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits