CleanTalk WordPress Plugin Vulnerability Puts 200,000 Sites at Risk
Over Security - Cybersecurity news aggregator [Unofficial]
February 17, 2026
CVE-2026-1490 in CleanTalk WordPress plugin lets attackers install arbitrary plugins, risking remote code execution on 200,000+ sites.
Discussion in the ATmosphere