CVE-2026-39574CRITICAL NVDCVSS Score 9.3Severity CRITICALPublished Jun 16, 2026Vendor unknownDescriptionUnauthenticated SQL Injection in InPost Gallery <= 2.1.4.6 versions.Referenceshttps://patchstack.com/database/wordpress/plugin/inpost-gallery/vulnerability/wordpress-inpost-gallery-plugin-2-1-4-6-sql-injection-vulnerability?_s_id=cve