← العودة للجدول
CVE-2026-60137
PSA: WordPress Core Patched Unauthenticated Remote Code Execution Vulnerability Chain
📅 2026-07-18 02:03:48
🔴 Critical 🔥 No Wordfence Vulnerability WordPress

📋 الوصف الكامل

On July 17, 2026, the WordPress Security Team released updates to WordPress core addressing two security vulnerabilities. The first is an unauthenticated SQL injection vulnerability identified as CVE-2026-60137, while the second can be chained with the SQL injection to increase its impact to unauthenticated remote code execution and is identified as CVE-2026-63030. To protect WordPress ...Read Mor

💻 الأنظمة المتأثرة

WordPress

⚠️ نوع التهديد

Vulnerability

🔗 CVE ID

CVE-2026-60137

📡 المصدر

Wordfence

✅ الحلول والتخفيف

Refer to CVE-2026-60137 NVD advisory

🔗 المصدر الأصلي ← 📘 NVD ← ⚡ CISA KEV ← 🔍 Valters IT ←