🟠 CVE-2026-4248 - High (8)

The Ultimate Member plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.2. This is due to the '{usermeta:password_reset_link}' template tag being processed within post content via the '[u...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-4248/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack