A vulnerability, which was classified as problematic , has been found in javibola JaviBola Custom Theme Test up to 2.0.5 on WordPress. This impacts the function jbct_theme . This manipulation causes cross-site request forgery. This vulnerability appears as CVE-2026-8423 . The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.