CVE-2026-6443

Name of the Vulnerable Software and Affected Versions Accordion and Accordion Slider version 1.4.6

Description The plugin contains an injected backdoor resulting from a supply chain attack where the software was sold to a malicious threat actor. This allows the actor to maintain persistent access to affected sites and inject spam.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.