CVE ID :CVE-2026-7385 Published : May 20, 2026, 7:16 a.m. | 1 hour, 8 minutes ago Description :The Decent Comments WordPress plugin before 3.0.2 does not restrict access to comment author email addresses and post author email addresses via its REST API endpoint, allowing unauthenticated attackers to enumerate registered user email addresses. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...