CVE-2026-4338
UNKNOWN
NVD
CVSS Score
0
Severity
UNKNOWN
Published
Apr 08, 2026
Vendor
unknown
Description
The ActivityPub WordPress plugin before 8.0.2 does not properly filter posts to be displayed, allowed unauthenticated users to access drafts/scheduled/pending posts