cleantalk
Vulnerabilities and Security Researches

Disable Comments for Any Post Types (Remove comments), CVE-2026-42749

CVE, Research URL

CVE-2026-42749

Home page URL

Security reports for Disable Comments for Any Post Types (Remove comments)

Application

Disable Comments for Any Post Types (Remove comments)

Published on
May 27, 2026
Research Description
Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeisle Disable Comments for Any Post Types (Remove comments) comments-plus allows Password Recovery Exploitation.This issue affects Disable Comments for Any Post Types (Remove comments): from n/a through <= 1.3.0.
Affected versions
max 1.3.0.
Status
vulnerable
Previous vulnerability researches
GoStats for WordPress (CVE-2026-8943) , May 29, 2026
New vulnerability
Media Library Assistant (CVE-2026-6075) , May 30, 2026
WCFM Membership &#8211; WooCommerce Memberships for Multivendor Marketplace (CVE-2026-42753) , May 29, 2026
Backup and Staging by WP Time Capsule (CVE-2026-42760) , May 29, 2026
Disable Comments for Any Post Types (Remove comments) (CVE-2026-42749) , May 29, 2026
Rank Math SEO with AI SEO Tools (CVE-2025-12714) , May 29, 2026