CVE-2026-15026 | carazo Import and Export Users and Customers Plugin up to 2.4.0 on WordPress Email Template email_template_selected information disclosure
A vulnerability was found in carazo Import and Export Users and Customers Plugin up to 2.4.0 on WordPress. It has been declared as problematic. This vulnerability affects unknown code of the component Email Template Handler. Executing a manipulation of the argument email_template_selected can lead to information disclosure.
This vulnerability is handled as CVE-2026-15026. The attack can be executed remotely. There is not any exploit available.