A vulnerability was found in abhisheksaha11 URL Preview Plugin up to 1.0 on WordPress. It has been rated as critical . This affects an unknown part of the component Web Request Handler . This manipulation of the argument url causes server-side request forgery. This vulnerability is tracked as CVE-2026-12100 . The attack is possible to be carried out remotely. No exploit exists.