CVE-2026-57700
published 2026-06-25CVE-2026-57700: Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious Files. This issue affects OMGF Pro: from n/a through…
PriorityP186critical10CVSS 3.1
AVNACLPRNUINSCCHIHAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
0.37%
29.1th percentile
Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious Files.
This issue affects OMGF Pro: from n/a through 5.2.6.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| daan.dev | omgf_pro | n/a – 5.2.6 | — |
CVSS provenance
nvdv3.110.0CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
vulncheck10.0CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Daan.dev OMGF Pro Plugin up to 5.2.6 on WordPress unrestricted upload
vuldb·2026-06-26·CVSS 10.0
CVE-2026-57700 [CRITICAL] Daan.dev OMGF Pro Plugin up to 5.2.6 on WordPress unrestricted upload
A vulnerability was found in Daan.dev OMGF Pro Plugin up to 5.2.6 on WordPress. It has been declared as critical. This affects an unknown function. Such manipulation leads to unrestricted upload.
This vulnerability is referenced as CVE-2026-57700. It is possible to launch the attack remotely. No exploit is available.
GHSA
Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious Files.
ghsa_unreviewed·2026-06-25
CVE-2026-57700 [CRITICAL] CWE-434 Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious Files.
Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious Files.
This issue affects OMGF Pro: from n/a through 5.2.6.
VulnCheck
Unrestricted Upload of File with Dangerous Type
vulncheck·2026·CVSS 10.0
CVE-2026-57700 [CRITICAL] Unrestricted Upload of File with Dangerous Type
Unrestricted Upload of File with Dangerous Type
Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious Files.
This issue affects OMGF Pro: from n/a through 5.2.6.
Affected: Daan.dev OMGF Pro
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://patchstack.com/database/wordpress/plugin/host-google-fonts-pro/vulnerability/wordpress-omgf-pro-plugin-5-2-6-arbitrary-file-upload-vulnerability
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-25
Published
Exploited in the wild