A vulnerability has been found in mohammadtanzilurrahman Static Block Plugin up to 2.2 on WordPress and classified as problematic . Impacted is the function static_block_content of the component Shortcode Handler . The manipulation of the argument ID leads to authorization bypass. This vulnerability is referenced as CVE-2026-10780 . Remote exploitation of the attack is possible. No exploit is available.