A vulnerability was found in shahinurislam Career Section Plugin up to 1.7 on WordPress. It has been declared as critical . This affects an unknown part. Executing a manipulation can lead to unrestricted upload. This vulnerability appears as CVE-2026-6271 . The attack may be performed from remote. There is no available exploit.