CVE-2026-2589

Name of the Vulnerable Software and Affected Versions Greenshift – animation and page builder blocks versions through 12.8.3

Description The Greenshift plugin for WordPress is susceptible to exposure of sensitive information. This occurs due to the automated Settings Backup being stored in a publicly accessible file, allowing unauthenticated attackers to extract data. Compromised data includes API keys for OpenAI, Claude, Google Maps, Gemini, DeepSeek, and Cloudflare Turnstile.

Recommendations Versions prior to 12.8.3 should be updated.