CYBERHAWK / CVE / CVE-2026-7459

CVE-2026-7459

Simple History WordPress Plugin

HIGH CVSS 7.5 vibe

The flaw

Authenticated account takeover via event reaction endpoints due to insufficient permission checks.

What to do

Update Simple History plugin to version later than 5.26.0

▸ Scan my repo for CVE-2026-7459

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-06-05 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits