Marketingfire Widget Options vulnerabilities
2 known vulnerabilities affecting marketingfire/widget_options.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2026-54823P2CRITICALCVSS 9.9≥ n/a, ≤ 4.2.32026-06-25
CVE-2026-54823 [CRITICAL] CWE-94 CVE-2026-54823: Contributor Remote Code Execution (RCE) in Widget Options <= 4.2.3 versions.
Contributor Remote Code Execution (RCE) in Widget Options <= 4.2.3 versions.
nvd
CVE-2024-35690MEDIUMCVSS 6.5≥ n/a, ≤ 4.0.12026-06-17
CVE-2024-35690 [MEDIUM] CWE-201 WordPress Widget Options plugin <= 4.0.1 - Subscriber+ User Meta Data Exposure Vulnerability
WordPress Widget Options plugin <= 4.0.1 - Subscriber+ User Meta Data Exposure Vulnerability
Insertion of sensitive information into sent data vulnerability in MarketingFire Widget Options allows Retrieve Embedded Sensitive Data.
This issue affects Widget Options: from n/a through 4.0.1.
cvelistv5