A critical vulnerability in the popular CleanTalk Spam Protection plugin for WordPress exposes websites to complete takeover. Tracked as CVE-2026-1490, this high-severity flaw allows unauthenticated attackers to bypass authorization mechanisms and install arbitrary plugins on affected sites. The vulnerability carries a CVSS score of 9.8, indicating immediate danger to website administrators using outdated versions of […]

The post CleanTalk Plugin for WordPress Exposes Sites to Authorization Bypass via Reverse DNS appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.