A vulnerability classified as critical has been found in eemitch Simple File List Plugin up to 6.3.7 on WordPress. Affected is an unknown function of the file includes/ee-list-ops-bar-process.php of the component Post Preview Endpoint . Performing a manipulation of the argument frontmanage results in missing authorization. This vulnerability is known as CVE-2026-12119 . Remote exploitation of the attack is possible. No exploit is available. It is recommended to upgrade the affected component.