Kirki Plugin: Critical Security Vulnerability Enables WordPress Admin Account Takeover3. June 2026CybersecurityAttackers exploit CVE-2026-8206 in the WordPress Kirki plugin to log in with administrator privileges. Share on: