CVE-2026-1278 Blast Radius

MEDIUM • CVSS 4.4The Mandatory Field plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.6.8 d

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-1278.

Start Free Scan →← Back to CVE-2026-1278