iTracker360 Vulnerability (Medium) – CVE-2026-3572

by | Mar 20, 2026 | Plugins

Attack Vectors CVE-2026-3572 is a medium-severity vulnerability (CVSS 6.1) affecting the iTracker360 WordPress plugin (slug: itracker) in versions 2.2.0 and below. The issue combines Cross-Site Request Forgery (CSRF) with Stored Cross-Site Scripting (Stored XSS)...