Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Mon, 13 Jul 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Purethemes
Purethemes workscout Core Wordpress Wordpress wordpress |
|
| Vendors & Products |
Purethemes
Purethemes workscout Core Wordpress Wordpress wordpress |
|
| Metrics |
ssvc
|
Mon, 13 Jul 2026 10:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Cross-Site Request Forgery (CSRF) vulnerability in purethemes WorkScout-Core workscout-core allows Authentication Bypass.This issue affects WorkScout-Core: from n/a through <= 1.7.08. | |
| Title | WordPress WorkScout-Core plugin <= 1.7.08 - Cross Site Request Forgery (CSRF) to Broken Authentication vulnerability | |
| Weaknesses | CWE-352 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-07-13T16:07:49.745Z
Reserved: 2026-06-25T08:04:53.459Z
Link: CVE-2026-57786
Updated: 2026-07-13T16:01:57.334Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-13T16:15:16Z