CVE Alert & Security Feed

Stats Digest Feeds

← Back to all CVEs

CVE-2026-39591

CRITICAL NVD

CVSS Score 9.9

Severity CRITICAL

Published Jun 15, 2026

Vendor unknown

Description

Subscriber Arbitrary File Upload in WP-BusinessDirectory <= 4.0.0 versions.

References

https://patchstack.com/database/wordpress/plugin/wp-businessdirectory/vulnerability/wordpress-wp-businessdirectory-plugin-4-0-0-arbitrary-file-upload-vulnerability?_s_id=cve