CVE ID :CVE-2026-22182 Published : March 13, 2026, 6:19 a.m. | 1 hour, 58 minutes ago Description :wpDiscuz before 7.6.47 contains an unauthenticated denial of service vulnerability that allows anonymous users to trigger mass notification emails by exploiting the checkNotificationType() function. Attackers can repeatedly call the wpdiscuz-ajax.php endpoint with arbitrary postId and comment_id parameters to flood subscribers with notifications, as the handler lacks nonce verification, authentication checks, and rate limiting. Severity: 7.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...