CVE Catalog

CVE-2026-54824

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Summary

The Ads by WPQuads plugin version 3.0.3 and earlier allows unauthenticated attackers to access sensitive data. This vulnerability is due to missing access controls on data stored by the plugin.

Risk Assessment

The organization is at risk of sensitive data exposure, such as configuration details or statistics, which could lead to privacy breaches or further attacks.

Recommendation

Immediately update the Ads by WPQuads plugin to the latest available version that fixes this vulnerability.

Original NVD description (English source)

Unauthenticated Sensitive Data Exposure in Ads by WPQuads <= 3.0.3 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS