CVE Alert & Security Feed

Stats Digest Feeds

← Back to all CVEs

CVE-2026-40769

HIGH NVD

CVSS Score 8.6

Severity HIGH

Published Jun 15, 2026

Vendor unknown

Description

Unauthenticated Arbitrary File Deletion in Contact Form Extender for Divi – Save Entries, File Upload & Country Code Field <= 1.0.6 versions.

References

https://patchstack.com/database/wordpress/plugin/contact-form-extender-for-divi-builder/vulnerability/wordpress-contact-form-extender-for-divi-save-entries-file-upload-country-code-field-plugin-1-0-6-arbitrary-file-deletion-vulnerability?_s_id=cve