← back
CVE-2026-48836

WordPress Easy Invoice plugin <= 2.1.19 - Remote Code Execution (RCE) vulnerability

CVSS 10 CRITICALEPSS 0.6%CWE-94
Unauthenticated Remote Code Execution (RCE) in Easy Invoice <= 2.1.19 versions.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected products
MantraBrain · Easy Invoice

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://patchstack.com/database/wordpress/plugin/easy-invoice/vulnerability/wordpress-easy-invoice-plugin-2-1-19-remote-code-execution-rce-vulnerability?_s_id=cve