CVE-2026-48906
EUVD-2026-3216227.05.2026, 11:16
The vulnerability in the Tassos Framework Plugin allows users to delete arbitrary files on the affected sites.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| tassos | advanced_custom_fields | 1.0.0 ≤ 𝑥 ≤ 2.8.12 |
| tassos | advanced_custom_fields | 3.0.0 ≤ 𝑥 ≤ 3.1.3 |
| tassos | convert_forms | 1.0.0 ≤ 𝑥 ≤ 4.4.12 |
| tassos | convert_forms | 5.0.0 ≤ 𝑥 ≤ 5.1.5 |
| tassos | engagebox | 1.0.0 ≤ 𝑥 ≤ 6.3.11 |
| tassos | engagebox | 7.0.0 ≤ 𝑥 ≤ 7.1.1 |
| tassos | google_structured_data | 1.0.0 ≤ 𝑥 ≤ 5.6.11 |
| tassos | google_structured_data | 6.0.0 ≤ 𝑥 ≤ 6.1.9 |
| tassos | mailchimp_auto-subscribe | 1.0.0 ≤ 𝑥 ≤ 5.0.5 |
| tassos | mailchimp_auto-subscribe | 5.1.0 ≤ 𝑥 ≤ 5.2.0 |
| tassos | smile_pack | 1.0.0 ≤ 𝑥 ≤ 1.2.6 |
| tassos | smile_pack | 2.0.0 ≤ 𝑥 ≤ 2.1.0 |
| tassos | tassos_code_snippets | 1.0.0 |
| tassos | tassos_framework | 1.0.0 ≤ 𝑥 ≤ 6.0.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References