Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| VeronaLabs | WP SMS | unaffected |
|
No data.
No data.
OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.
| Vendors | Products |
|---|---|
|
Veronalabs
Subscribe
|
Wp Sms
Subscribe
|
|
Wordpress
Subscribe
|
Wordpress
Subscribe
|
Project Subscriptions
No advisories yet.
Solution
Update the WordPress WP SMS Plugin to the latest available version (at least 7.2.2).
Workaround
No workaround given by the vendor.
Tue, 16 Jun 2026 09:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Veronalabs
Veronalabs wp Sms Wordpress Wordpress wordpress |
|
| Vendors & Products |
Veronalabs
Veronalabs wp Sms Wordpress Wordpress wordpress |
Tue, 16 Jun 2026 06:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Mon, 15 Jun 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Subscriber Sensitive Data Exposure in WP SMS <= 7.2.1 versions. | |
| Title | WordPress WP SMS plugin <= 7.2.1 - Sensitive Data Exposure vulnerability | |
| Weaknesses | CWE-288 | |
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-16T01:28:39.932Z
Reserved: 2026-04-15T09:20:46.956Z
Link: CVE-2026-40790
Vulnrichment
Updated: 2026-06-16T01:28:35.412Z
NVD
Status : Deferred
Published: 2026-06-15T21:16:51.297
Modified: 2026-06-15T21:24:32.790
Link: CVE-2026-40790
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-16T20:45:02Z