CYBERHAWK / CVE / CVE-2026-7649

CVE-2026-7649

ARMember WordPress Plugin

HIGH CVSS 7.5 vibe oss

The flaw

Time-based blind SQL injection via orderby parameter allowing database extraction.

What to do

Update to version after 4.0.60

▸ Scan my repo for CVE-2026-7649

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-05-08 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits