N/A Unfixed Closed 2026-02-03≤ 1.2 WP Content Permission <= 1.2 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'ohmem-message' Parameter WordfenceCVE