{"id":8602,"date":"2026-06-16T10:43:40","date_gmt":"2026-06-16T10:43:40","guid":{"rendered":"https:\/\/locaterisk.com\/de\/?p=8602"},"modified":"2026-06-16T11:54:31","modified_gmt":"2026-06-16T11:54:31","slug":"cve-2026-49109","status":"publish","type":"post","link":"https:\/\/locaterisk.com\/fr\/cve-2026-49109\/","title":{"rendered":"CVE-2026-49109 : faille critique dans un plugin WordPress pour Salesforce"},"content":{"rendered":"<div class=\"wp-block-lr-blog-article-header-module\">\r\n    <div class=\"content\">\r\n\t\t<div class=\"headline\">\r\n\t\t\t<button class=\"to-blog-button\">Retour au blog                <a href=\"https:\/\/locaterisk.com\/fr\/blog\/\"><\/a>\r\n\t\t\t<\/button>\r\n\t\t\t\t\t<\/div>\r\n        <div class=\"main-content\">\r\n\t\t\t\t\t\t<!--\r\n            <div class=\"header\">\r\n                <h6> <\/h6>\r\n            <\/div>\r\n\t\t\t\t\t\t-->\r\n            <h1 class=\"title\">CVE-2026-49109 : faille critique dans un plugin WordPress pour Salesforce<\/h1>\r\n            <p class=\"paragraph\"><br>Selon Patchstack, le plugin WordPress \u201e Integration for Salesforce \u201c pr\u00e9sente une faille critique avec un <a href=\"https:\/\/patchstack.com\/database\/wordpress\/plugin\/cf7-salesforce\/vulnerability\/wordpress-integration-for-salesforce-and-contact-form-7-wpforms-elementor-formidable-ninja-forms-plugin-1-4-3-php-object-injection-vulnerability?_s_id=cve\" target=\"_blank\" rel=\"noreferrer noopener\">Score CVSS de <strong>9.8<\/strong><\/a> sur. Ce qui est consid\u00e9r\u00e9 comme <strong>CVE-2026-49109<\/strong> Selon les informations disponibles, cette vuln\u00e9rabilit\u00e9 concerne toutes les versions jusqu'\u00e0 la version 1.4.3 incluse et permet aux attaquants de proc\u00e9der \u00e0 une injection d'objet PHP sans aucune authentification. La vuln\u00e9rabilit\u00e9 a d\u00e9j\u00e0 \u00e9t\u00e9 corrig\u00e9e dans la version 1.4.4 datant de 2025, mais la documentation CVE n\u2019a \u00e9t\u00e9 publi\u00e9e qu\u2019\u00e0 la mi-juin 2026 par Wordfence. Aucun cas d\u2019exploitation active de cette vuln\u00e9rabilit\u00e9 n\u2019avait \u00e9t\u00e9 signal\u00e9 au moment de la divulgation.<\/p>\r\n        <\/div>\r\n    <\/div>\r\n<\/div>\r\n\r\n\r\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"400\" height=\"400\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured.png\" alt=\"\" class=\"wp-image-8601\" srcset=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured.png 400w, https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured-300x300.png 300w, https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured-150x150.png 150w, https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured-12x12.png 12w\" sizes=\"auto, (max-width: 400px) 100vw, 400px\" \/><\/figure><\/div>\n\n\n<h2 class=\"wp-block-heading\"><strong>Que s'est-il pass\u00e9 ? La faille CVE-2026-49109 en d\u00e9tail<\/strong><\/h2>\n\n\n\n<p>\u00c0 la mi-juin 2026, le prestataire de services de s\u00e9curit\u00e9 Patchstack a signal\u00e9 une faille de s\u00e9curit\u00e9 critique dans un plugin WordPress tr\u00e8s r\u00e9pandu. Le plugin concern\u00e9 est <strong>cf7-salesforce<\/strong> du fabricant <strong>avantages CRM<\/strong>, qui permet d'int\u00e9grer des formulaires tels que Contact Form 7, WPForms, Elementor, Formidable ou Ninja Forms aux syst\u00e8mes Salesforce. Selon les informations fournies par Patchstack, toutes les versions jusqu'\u00e0 <strong><= 1.4.3<\/strong> vuln\u00e9rable. Cette faille est class\u00e9e par Patchstack avec un score CVSS critique de <strong>9.8<\/strong> \u00e9valu\u00e9, ce qui indique un potentiel de risque tr\u00e8s \u00e9lev\u00e9.<\/p>\n\n\n\n<p>Le danger particulier que repr\u00e9sente <strong>CVE-2026-49109<\/strong> r\u00e9side dans le fait qu'elle peut \u00eatre exploit\u00e9e \u00e0 distance par des pirates, sans qu'ils aient besoin de se connecter au pr\u00e9alable au site WordPress concern\u00e9. Cela ouvre la voie \u00e0 un large \u00e9ventail d'attaques. Selon la cha\u00eene POP en place, les cons\u00e9quences potentielles peuvent aller de la suppression de fichiers \u00e0 l'exfiltration de donn\u00e9es sensibles, en passant par la prise de contr\u00f4le totale du serveur via l'ex\u00e9cution de code \u00e0 distance. Les administrateurs doivent imm\u00e9diatement effectuer la mise \u00e0 jour vers la version 1.4.4 ou une version ult\u00e9rieure afin de prot\u00e9ger leurs syst\u00e8mes.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Contexte technique : injection d'objet PHP sans authentification<\/strong><\/h2>\n\n\n\n<p>Le c\u0153ur de la vuln\u00e9rabilit\u00e9 <strong>CVE-2026-49109<\/strong> Il s'agit d'une d\u00e9s\u00e9rialisation non s\u00e9curis\u00e9e des donn\u00e9es d'entr\u00e9e, qui entra\u00eene une injection d'objet PHP. En termes simples, le plugin traite les donn\u00e9es provenant de l'ext\u00e9rieur sans en valider suffisamment le contenu et la structure. Les attaquants peuvent envoyer au syst\u00e8me des flux de donn\u00e9es sp\u00e9cialement pr\u00e9par\u00e9s qui, lors de leur traitement dans le contexte du serveur, sont interpr\u00e9t\u00e9s comme des objets malveillants et ex\u00e9cut\u00e9s. Ce m\u00e9canisme permet de manipuler la logique du programme et d'ex\u00e9cuter des actions qui n'ont jamais \u00e9t\u00e9 pr\u00e9vues par les d\u00e9veloppeurs.<\/p>\n\n\n\n<p>Le vecteur CVSS selon Patchstack <strong>CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:H<\/strong> confirme le niveau \u00e9lev\u00e9 de criticit\u00e9. L'identifiant <strong>AV:N<\/strong> (Vecteur d'attaque : r\u00e9seau) signifie que l'attaque peut \u00eatre lanc\u00e9e via le r\u00e9seau. <strong>PR:N<\/strong> (Privil\u00e8ges requis : aucun) souligne qu'aucun identifiant ni aucun droit d'acc\u00e8s n'est n\u00e9cessaire. Combin\u00e9 \u00e0 la faible complexit\u00e9 de l'attaque (<strong>AC:L<\/strong>) cela cr\u00e9e une situation dangereuse pour tout site web accessible au public qui utilise une version vuln\u00e9rable du plugin. En exploitant ce que l'on appelle les cha\u00eenes POP (Property-Oriented Programming) \u2014 dans la mesure o\u00f9 celles-ci sont pr\u00e9sentes dans le syst\u00e8me cible \u2014, les attaquants peuvent assembler des fragments de code existants dans la m\u00e9moire du serveur pour former une nouvelle cha\u00eene d'ex\u00e9cution et ainsi potentiellement ex\u00e9cuter n'importe quel code.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Quelles mesures faut-il prendre d\u00e8s maintenant concernant la vuln\u00e9rabilit\u00e9 CVE-2026-49109 ?<\/strong><\/h2>\n\n\n\n<p>Concernant la vuln\u00e9rabilit\u00e9 <strong>CVE-2026-49109<\/strong> Un correctif est disponible avec la version 1.4.4 (publi\u00e9e en 2025). Toutefois, des mesures proactives visant \u00e0 minimiser les risques sont n\u00e9cessaires si une mise \u00e0 jour imm\u00e9diate n'est pas possible. Les entreprises devraient adopter une approche en trois \u00e9tapes pour identifier et s\u00e9curiser les syst\u00e8mes concern\u00e9s.<\/p>\n\n\n\n<p><strong>Mesures d'urgence :<\/strong> - <strong>Inventaire et mise \u00e0 jour :<\/strong> La premi\u00e8re \u00e9tape, et la plus importante, consiste \u00e0 v\u00e9rifier que toutes les installations WordPress disposent bien du plugin <strong>cf7-salesforce<\/strong>. Si une version concern\u00e9e (&lt;= 1.4.3) doit \u00eatre mis \u00e0 jour imm\u00e9diatement vers la version 1.4.4 ou une version ult\u00e9rieure. Si une mise \u00e0 jour imm\u00e9diate n&#039;est pas possible, il convient de d\u00e9sactiver le plugin en attendant. - <strong>V\u00e9rifier si l'on est concern\u00e9 :<\/strong> Assurez-vous que tous les projets web externes et internes soient inclus dans l'audit, y compris les syst\u00e8mes de pr\u00e9production ou de d\u00e9veloppement.<\/p>\n\n\n\n<p><strong>Couverture \u00e0 court terme :<\/strong> - <strong>Patching virtuel :<\/strong> Si, pour des raisons op\u00e9rationnelles, le plugin ne peut \u00eatre mis \u00e0 jour ou d\u00e9sactiv\u00e9 imm\u00e9diatement, il convient de configurer un pare-feu d'application web (WAF) avec des r\u00e8gles de protection contre les attaques par d\u00e9s\u00e9rialisation PHP. Des services tels que Patchstack proposent des correctifs virtuels qui peuvent servir de bouclier temporaire en bloquant les requ\u00eates malveillantes avant qu'elles n'atteignent le plugin vuln\u00e9rable. \u2013 <strong>Hi\u00e9rarchiser les syst\u00e8mes :<\/strong> Identifiez et hi\u00e9rarchisez les syst\u00e8mes qui traitent des donn\u00e9es particuli\u00e8rement sensibles ou qui rev\u00eatent une importance cruciale pour l'activit\u00e9.<\/p>\n\n\n\n<p><strong>Strat\u00e9gies \u00e0 long terme :<\/strong> - <strong>Surveillance continue des vuln\u00e9rabilit\u00e9s :<\/strong> Mettez en place des processus permettant de surveiller en permanence les composants logiciels utilis\u00e9s ; l'inventaire des plugins doit \u00eatre r\u00e9guli\u00e8rement compar\u00e9 \u00e0 des bases de donn\u00e9es telles que WPScan ou Patchstack. \u2013 <strong>Gestion des risques li\u00e9s aux fournisseurs :<\/strong> V\u00e9rifiez les pratiques de s\u00e9curit\u00e9 des fournisseurs tiers et des \u00e9diteurs de plugins avant de d\u00e9ployer leurs logiciels au sein de l'entreprise.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Cons\u00e9quences pour la r\u00e9gion DACH : ce que les entreprises de l'UE doivent d\u00e9sormais prendre en compte<\/strong><\/h2>\n\n\n\n<p>Pour les entreprises de la r\u00e9gion DACH, un \u00e9ventuel incident de s\u00e9curit\u00e9 entra\u00eene des obligations suppl\u00e9mentaires : si une violation de la s\u00e9curit\u00e9 affecte les donn\u00e9es \u00e0 caract\u00e8re personnel de citoyens de l'UE, l'article 33 du RGPD s'applique \u2014 avec une obligation de notification \u00e0 l'autorit\u00e9 comp\u00e9tente en mati\u00e8re de protection des donn\u00e9es dans un d\u00e9lai de 72 heures. Les organisations relevant de la directive NIS 2 ou class\u00e9es comme op\u00e9rateurs KRITIS doivent en outre v\u00e9rifier si des obligations internes de notification et de documentation s\u2019appliquent. Le BSI recommande de mani\u00e8re g\u00e9n\u00e9rale de recenser en permanence les applications web expos\u00e9es et leurs composants tiers, et de prendre imm\u00e9diatement des mesures correctives en cas d'absence de correctifs.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Comment LocateRisk contribue \u00e0 s\u00e9curiser les installations WordPress<\/strong><\/h2>\n\n\n\n<p>Des incidents tels que cette faille de s\u00e9curit\u00e9 <strong>CVE-2026-49109<\/strong> montrent que le plus grand risque provient souvent de syst\u00e8mes oubli\u00e9s ou non document\u00e9s. LocateRisk recense automatiquement l\u2019ensemble de la surface d\u2019attaque externe d\u2019une entreprise et rend \u00e9galement visible ce \u00ab shadow IT \u00bb, y compris les installations WordPress sur des sous-domaines oubli\u00e9s, les projets qui ne sont plus activement g\u00e9r\u00e9s ou les ressources cloud non r\u00e9pertori\u00e9es. Une approche proactive permet de <a href=\"https:\/\/locaterisk.com\/fr\/landing\/vendor-risk-management-leicht-gemacht\/\" target=\"_blank\" rel=\"noreferrer noopener\">Gestion du risque vendeur<\/a>, afin d'\u00e9valuer les d\u00e9pendances vis-\u00e0-vis des logiciels tiers. Gr\u00e2ce \u00e0 une surveillance continue depuis l'ext\u00e9rieur, la plateforme permet de d\u00e9tecter rapidement les installations WordPress vuln\u00e9rables et d'autres technologies expos\u00e9es, et de r\u00e9duire ainsi le risque d'exploitation.<\/p>\n\n\n\n<p>La solution est <strong>Fabriqu\u00e9 en Allemagne<\/strong> et est h\u00e9berg\u00e9 dans des centres de donn\u00e9es allemands, ce qui aide les entreprises \u00e0 se conformer aux exigences du RGPD. Au lieu de se fier \u00e0 des inventaires manuels, les responsables informatiques disposent d'une vue d'ensemble dynamique et constamment mise \u00e0 jour de tous les actifs accessibles depuis l'ext\u00e9rieur, ce qui leur permet de r\u00e9agir plus rapidement et de mani\u00e8re plus cibl\u00e9e aux vuln\u00e9rabilit\u00e9s critiques.<\/p>\n\n\n\n<p><br><br>Sources et informations compl\u00e9mentaires<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/patchstack.com\/database\/wordpress\/plugin\/cf7-salesforce\/vulnerability\/wordpress-integration-for-salesforce-and-contact-form-7-wpforms-elementor-formidable-ninja-forms-plugin-1-4-3-php-object-injection-vulnerability?_s_id=cve\" target=\"_blank\" rel=\"noreferrer noopener\">Patchstack<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/wpscan.com\/plugin\/cf7-salesforce\/\" target=\"_blank\" rel=\"noreferrer noopener\">WPScan<\/a><\/li>\n\n\n\n<li><a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2026-49109\" target=\"_blank\" rel=\"noreferrer noopener\">NVD\/NIST<\/a><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Connaissez-vous votre surface d'attaque externe ?<\/strong><\/h2>\n\n\n\n<p>Une surveillance continue de vos syst\u00e8mes informatiques externes constitue la premi\u00e8re \u00e9tape pour vous pr\u00e9munir contre les attaques. LocateRisk vous fournit une analyse compl\u00e8te de votre infrastructure num\u00e9rique. <a href=\"https:\/\/locaterisk.com\/fr\/demo\/\" target=\"_blank\" rel=\"noreferrer noopener\">Lancer un contr\u00f4le de s\u00e9curit\u00e9 gratuit<\/a><\/p>\n\n\n\n<div class=\"wp-block-lr-faq-module\"><div class=\"content\"><h3><strong>Questions fr\u00e9quentes<\/strong><\/h3><div class=\"faq-topic\"><hr\/><div class=\"collapsible-title\"><a class=\"pr-4\"><strong>Quelles versions du plugin Salesforce sont concern\u00e9es par la vuln\u00e9rabilit\u00e9 CVE-2026-49109 ?<\/strong><\/a><img class=\"collapse-toggle\" srcset=\"https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@3x.png 3x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@2x.png 2x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus.png 1x\"\/><\/div><div class=\"collapsible-content\"><p class=\"font-normal\">Selon les analyses de Patchstack, toutes les versions du plugin \u201e Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms \u201c jusqu'\u00e0 la version incluse <strong>1.4.3<\/strong> de la vuln\u00e9rabilit\u00e9 <strong>CVE-2026-49109<\/strong> est concern\u00e9. Il est vivement recommand\u00e9 de v\u00e9rifier la version utilis\u00e9e.<\/p><\/div><\/div><div class=\"faq-topic\"><hr\/><div class=\"collapsible-title\"><a class=\"pr-4\"><strong>Existe-t-il un correctif pour la vuln\u00e9rabilit\u00e9 CVE-2026-49109 ?<\/strong><\/a><img class=\"collapse-toggle\" srcset=\"https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@3x.png 3x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@2x.png 2x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus.png 1x\"\/><\/div><div class=\"collapsible-content\"><p class=\"font-normal\">Un correctif officiel du d\u00e9veloppeur crm-perks est disponible dans la version 1.4.4 (publi\u00e9e en 2025). La mesure imm\u00e9diate recommand\u00e9e consiste \u00e0 effectuer la mise \u00e0 jour vers la version 1.4.4 ou une version ult\u00e9rieure. Si la mise \u00e0 jour n'est pas possible dans l'imm\u00e9diat, il convient de d\u00e9sactiver le plugin.<\/p><\/div><\/div><div class=\"faq-topic\"><hr\/><div class=\"collapsible-title\"><a class=\"pr-4\"><strong>Conna\u00eet-on des attaques en cours visant la vuln\u00e9rabilit\u00e9 CVE-2026-49109 ?<\/strong><\/a><img class=\"collapse-toggle\" srcset=\"https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@3x.png 3x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus@2x.png 2x,https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/faq-module\/img\/ic-plus.png 1x\"\/><\/div><div class=\"collapsible-content\"><p class=\"font-normal\">Selon Patchstack, aucune attaque r\u00e9elle exploitant la vuln\u00e9rabilit\u00e9 CVE-2026-49109 n'avait encore \u00e9t\u00e9 signal\u00e9e au moment de la publication. Cependant, comme cette faille peut \u00eatre exploit\u00e9e \u00e0 distance sans authentification, il est urgent d'agir : la mise \u00e0 jour vers la version 1.4.4 ou sup\u00e9rieure doit \u00eatre install\u00e9e sans d\u00e9lai.<\/p><\/div><\/div><\/div><\/div>\n\n\n\n<div class=\"wp-block-lr-contact-post-module\">\n\t<div id=\"lr-contact-form\" class=\"wp-block-lr-contact-post-module\">\n\t\t<div id=\"formular\" class=\"content\">\n\t\t\t<div class=\"inner-content\">\n\t\t\t\t<div class=\"column-2 feature-mode\">\n\t\t\t\t\t<h2><br>Demandez maintenant une D\u00e9mo en direct personelle<\/h2>\n\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t<div>\n\t\t\t\t\t\t\t\t<p class=\"margin-b-36\">Identifiez et r\u00e9duisez vos cyber-risques gr\u00e2ce \u00e0 un aper\u00e7u comparable et compr\u00e9hensible de votre s\u00e9curit\u00e9 informatique. Demandez conseil \u00e0 nos experts et d\u00e9couvrez comment LocateRisk peut vous aider \u00e0 r\u00e9soudre vos cyber-risques.<\/p>\n\t\t\t\t\t\t\t<\/div>\t\n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t<\/div> \n\t\t\t\t<div class=\"column-2\">\n\t\t\t\t\t<form action=\"\" class=\"form\" method=\"post\" role=\"form\" novalidate data-trp-original-action=\"\">\n\t\t\t\t\t\t<input type=\"text\" id=\"successmessage\" name=\"successmessage\" value=\"Ihre Registrierung war erfolgreich Ihre Anfrage wurde erfolgreich versendet. Wir haben Ihnen soeben eine Best\u00e4tigungsmail mit einem Aktivierungs-Link zugesendet, um einem Missbrauch Ihrer E-Mail Adresse durch Dritte vorzubeugen. Die Mail wird von sales@locaterisk.com versendet und sollte sich i n wenigen Minuten in Ihrem Posteingang finden.\" hidden>\n\t\t\t\t\t\t<input type=\"text\" id=\"errormessage\" name=\"errormessage\" value=\"Da ist wohl etwas schief gelaufen. Bitte probieren Sie es erneut oder nehmen Sie direkt mit uns Kontakt auf\" hidden>\n\t\t\t\t\t\t<input type=\"text\" id=\"slug\" name=\"slug\" value=\"cve-2026-49109\" hidden>\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t<input\n\t\t\t\t\t\t\t\ttype=\"text\"\n\t\t\t\t\t\t\t\tid=\"name\"\n\t\t\t\t\t\t\t\tname=\"name\"\n\t\t\t\t\t\t\t\tplaceholder=\"Pr\u00e9nom\"\n\t\t\t\t\t\t\t\trequired\tmaxlength=\"50\"\/>\n\n\t\t\t\t\t\t\t<input\n\t\t\t\t\t\t\t\ttype=\"text\"\n\t\t\t\t\t\t\t\tid=\"surname\"\n\t\t\t\t\t\t\t\tname=\"surname\"\n\t\t\t\t\t\t\t\tplaceholder=\"Nom\"\n\t\t\t\t\t\t\t\trequired\n\t\t\t\t\t\t\t\tmaxlength=\"50\"\/>\n\t\t\t\t\t\t\n\t\t\t\t\t\t<input\n\t\t\t\t\t\t\ttype=\"email\"\n\t\t\t\t\t\t\tid=\"email\"\n\t\t\t\t\t\t\tname=\"email\"\n\t\t\t\t\t\t\tplaceholder=\"Courrier \u00e9lectronique\"\n\t\t\t\t\t\t\trequired\n\t\t\t\t\t\t\tmaxlength=\"50\"\/>\n\n\t\t\t\t\t\t<input\n\t\t\t\t\t\t\ttype=\"text\"\n\t\t\t\t\t\t\tid=\"phone\"\n\t\t\t\t\t\t\tname=\"phone\"\n\t\t\t\t\t\t\tplaceholder=\"T\u00e9l\u00e9phone\"\n\t\t\t\t\t\t\trequired\n\t\t\t\t\t\t\tmaxlength=\"50\"\/>\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t<h6 class=\"error-message\" hidden>...<\/h6>\n\t\t\t\t\t\t<div class=\"checkbox_container\">\n\t\t\t\t\t\t\t<div class=\"checkbox\">\n\t\t\t\t\t\t\t\t<input\n\t\t\t\t\t\t\t\t\ttype=\"checkbox\"\n\t\t\t\t\t\t\t\t\tid=\"checkbox\"\n\t\t\t\t\t\t\t\t\tname=\"checkbox\" \/>\n\n\t\t\t\t\t\t\t\t<label for=\"checkbox\"><\/label>\n\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t\t<p>je suis d'accord avec <a href=\"https:\/\/locaterisk.com\/fr\/datenschutz\/\">politique de confidentialit\u00e9.<\/a> confidentialit\u00e9<\/p> \n\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t\n\t\t\t\t\t<div class=\"g-recaptcha\" data-sitekey=\"6LdErNoZAAAAAD1Re2jNxtDFfcDaL9iED5MRBzjR\" data-callback=\"verifyRecaptchaCallback\" data-expired-callback=\"expiredRecaptchaCallback\"><\/div>\n\t\t\t\t\t<input type=\"hidden\" name=\"g-recaptcha-response\" data-recaptcha \/>\n\n\t\t\t\t\t\t<button class=\"lr-button-link\" type=\"submit\"> Demander une d\u00e9mo<\/button>\n\t\t\t\t\t<input type=\"hidden\" name=\"trp-form-language\" value=\"fr\"\/><\/form>\n\t\t\t\t<\/div>\n\t\t\t<\/div>\n\t\t<\/div>\n\t<\/div>\n\t\n\t<\/div>\n\n\n\n<hr class=\"wp-block-separator has-css-opacity is-style-wide\"\/>\n\n\n\n<div class=\"wp-block-lr-contact-module\"><div class=\"content\"><h2>En savoir plus, r\u00e9server une d\u00e9mo ou simplement \u00e9changer quelques mots ? Nous nous en r\u00e9jouissons !<\/h2><div class=\"contact-info-row\"><div class=\"contact-person-info\"><div class=\"avatar\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2025\/06\/Lukas_Baumann_LocateRisk-300.png\"><\/div><p><span class=\"text before\">Votre Contact<\/span><span class=\"bold name\"><strong>Lukas<\/strong><\/span> <span class=\"lastname\"><strong>Baumann<strong><\/strong><\/strong><\/span><strong><strong><span class=\"separator\"><\/span><span class=\"role\">PDG<\/span><\/strong><\/strong><\/p><\/div><p class=\"bold phone\"><strong><strong>+49 6151 6290246<\/strong><\/strong><\/p><strong><strong><a class=\"pr-1\" href=\"mailto: sales@locaterisk.com\">Contactez-nous maintenant<\/a><\/strong><\/strong><\/div><\/div><\/div>\n\n\n\n<p><\/p>\n\n\n\n<p><\/p>\n\n\n\n<div class=\"wp-block-lr-footer-module lr-footer-block\"><div class=\"content\"><div class=\"column0\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/plugins\/locate-risk-prod\/lr-blocks\/assets\/img\/lr-logo.svg\"\/><\/div><div class=\"categories\"><div class=\"categories-element\"><a class=\"pr-4\" href=\"https:\/\/locaterisk.com\/fr\/\">Accueil<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/fr\/blog\/\">Blog<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/fr\/about\/\">par rapport \u00e0 nous<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/fr\/kontakt\/\">Contact<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/fr\/impressum\/\">mentiones l\u00e9gales<\/a><\/div><div class=\"categories-break\"><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/fr\/datenschutz\/\">Confidentialit\u00e9<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/files\/agb.pdf\">CONDITIONS G\u00c9N\u00c9RALES DE VENTE<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/fr\/jobs\/\">Carri\u00e8re<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"\/files\/sec-information.pdf\">s\u00e9curit\u00e9<\/a><\/div><div class=\"categories-element\"><a class=\"pr-4\" href=\"https:\/\/app.secfix.com\/trust\/locaterisk\/d1e7d433b33643aea1880bfbfeab9f60\">Centre de confiance<\/a><\/div><\/div><div class=\"social\"><div class=\"social-element\"><a target=\"_blank\" href=\"https:\/\/www.linkedin.com\/company\/locaterisk\/\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/10\/gruppe-230@3x.png\"\/><\/a><\/div><div class=\"social-element\"><a target=\"_blank\" href=\"https:\/\/www.instagram.com\/locaterisk\/\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/11\/Instagram.png\"\/><\/a><\/div><div class=\"social-element\"><a target=\"_blank\" href=\"https:\/\/twitter.com\/locaterisk\"><img decoding=\"async\" src=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/11\/twitter.png\"\/><\/a><\/div><\/div><div class=\"description\"><h6>\u00a9 LocateRisk 2026<\/h6><\/div><\/div><\/div>","protected":false},"excerpt":{"rendered":"<p>La vuln\u00e9rabilit\u00e9 critique CVE-2026-49109 (CVSS 9,8) dans le plugin WordPress cf7-salesforce permet une injection d'objet PHP. Toutes les versions sont ant\u00e9rieures \u00e0 la version 1.4.3.\n<\/p>","protected":false},"author":13,"featured_media":8601,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[650,649,648,260,511,647,115,327],"class_list":["post-8602","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blogpost","tag-cf7-salesforce","tag-crm-perks","tag-cve-2026-49109","tag-cvss-9-8","tag-php-object-injection","tag-salesforce-plugin","tag-schwachstelle","tag-wordpress"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce - LocateRisk<\/title>\n<meta name=\"description\" content=\"Kritische Schwachstelle CVE-2026-49109 (CVSS 9.8) im WordPress-Plugin cf7-salesforce erm\u00f6glicht PHP Object Injection. Alle Versionen &lt;= 1.4.3 sind.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/locaterisk.com\/fr\/cve-2026-49109\/\" \/>\n<meta property=\"og:locale\" content=\"fr_FR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce - LocateRisk\" \/>\n<meta property=\"og:description\" content=\"Kritische Schwachstelle CVE-2026-49109 (CVSS 9.8) im WordPress-Plugin cf7-salesforce erm\u00f6glicht PHP Object Injection. Alle Versionen &lt;= 1.4.3 sind.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/locaterisk.com\/fr\/cve-2026-49109\/\" \/>\n<meta property=\"og:site_name\" content=\"LocateRisk\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-16T10:43:40+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-16T11:54:31+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured.png\" \/>\n\t<meta property=\"og:image:width\" content=\"400\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Kristina Hoinkis\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u00c9crit par\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kristina Hoinkis\" \/>\n\t<meta name=\"twitter:label2\" content=\"Dur\u00e9e de lecture estim\u00e9e\" \/>\n\t<meta name=\"twitter:data2\" content=\"9 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/\"},\"author\":{\"name\":\"Kristina Hoinkis\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#\\\/schema\\\/person\\\/68f3857c15afa8ff59c545848dddcc32\"},\"headline\":\"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce\",\"datePublished\":\"2026-06-16T10:43:40+00:00\",\"dateModified\":\"2026-06-16T11:54:31+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/\"},\"wordCount\":403,\"publisher\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/cve-2026-49109-featured.png\",\"keywords\":[\"cf7-salesforce\",\"crm-perks\",\"CVE-2026-49109\",\"CVSS 9.8\",\"PHP Object Injection\",\"Salesforce Plugin\",\"Schwachstelle\",\"WordPress\"],\"articleSection\":[\"Blog post\"],\"inLanguage\":\"fr-FR\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/\",\"name\":\"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce - LocateRisk\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/cve-2026-49109-featured.png\",\"datePublished\":\"2026-06-16T10:43:40+00:00\",\"dateModified\":\"2026-06-16T11:54:31+00:00\",\"description\":\"Kritische Schwachstelle CVE-2026-49109 (CVSS 9.8) im WordPress-Plugin cf7-salesforce erm\u00f6glicht PHP Object Injection. Alle Versionen &lt;= 1.4.3 sind.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/#breadcrumb\"},\"inLanguage\":\"fr-FR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/#primaryimage\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/cve-2026-49109-featured.png\",\"contentUrl\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/cve-2026-49109-featured.png\",\"width\":400,\"height\":400,\"caption\":\"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/cve-2026-49109\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/locaterisk.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#website\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/\",\"name\":\"LocateRisk\",\"description\":\"IT-Sicherheit messen und vergleichen\",\"publisher\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"fr-FR\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#organization\",\"name\":\"LocateRisk\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2020\\\/11\\\/Kettenglieder_V0216-9.jpg\",\"contentUrl\":\"https:\\\/\\\/locaterisk.com\\\/wp-content\\\/uploads\\\/2020\\\/11\\\/Kettenglieder_V0216-9.jpg\",\"width\":1920,\"height\":1080,\"caption\":\"LocateRisk\"},\"image\":{\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/company\\\/locaterisk\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/locaterisk.com\\\/de\\\/#\\\/schema\\\/person\\\/68f3857c15afa8ff59c545848dddcc32\",\"name\":\"Kristina Hoinkis\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g\",\"caption\":\"Kristina Hoinkis\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce - LocateRisk","description":"Kritische Schwachstelle CVE-2026-49109 (CVSS 9.8) im WordPress-Plugin cf7-salesforce erm\u00f6glicht PHP Object Injection. Alle Versionen &lt;= 1.4.3 sind.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/locaterisk.com\/fr\/cve-2026-49109\/","og_locale":"fr_FR","og_type":"article","og_title":"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce - LocateRisk","og_description":"Kritische Schwachstelle CVE-2026-49109 (CVSS 9.8) im WordPress-Plugin cf7-salesforce erm\u00f6glicht PHP Object Injection. Alle Versionen &lt;= 1.4.3 sind.","og_url":"https:\/\/locaterisk.com\/fr\/cve-2026-49109\/","og_site_name":"LocateRisk","article_published_time":"2026-06-16T10:43:40+00:00","article_modified_time":"2026-06-16T11:54:31+00:00","og_image":[{"width":400,"height":400,"url":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured.png","type":"image\/png"}],"author":"Kristina Hoinkis","twitter_card":"summary_large_image","twitter_misc":{"\u00c9crit par":"Kristina Hoinkis","Dur\u00e9e de lecture estim\u00e9e":"9 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/locaterisk.com\/cve-2026-49109\/#article","isPartOf":{"@id":"https:\/\/locaterisk.com\/cve-2026-49109\/"},"author":{"name":"Kristina Hoinkis","@id":"https:\/\/locaterisk.com\/de\/#\/schema\/person\/68f3857c15afa8ff59c545848dddcc32"},"headline":"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce","datePublished":"2026-06-16T10:43:40+00:00","dateModified":"2026-06-16T11:54:31+00:00","mainEntityOfPage":{"@id":"https:\/\/locaterisk.com\/cve-2026-49109\/"},"wordCount":403,"publisher":{"@id":"https:\/\/locaterisk.com\/de\/#organization"},"image":{"@id":"https:\/\/locaterisk.com\/cve-2026-49109\/#primaryimage"},"thumbnailUrl":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured.png","keywords":["cf7-salesforce","crm-perks","CVE-2026-49109","CVSS 9.8","PHP Object Injection","Salesforce Plugin","Schwachstelle","WordPress"],"articleSection":["Blog post"],"inLanguage":"fr-FR"},{"@type":"WebPage","@id":"https:\/\/locaterisk.com\/cve-2026-49109\/","url":"https:\/\/locaterisk.com\/cve-2026-49109\/","name":"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce - LocateRisk","isPartOf":{"@id":"https:\/\/locaterisk.com\/de\/#website"},"primaryImageOfPage":{"@id":"https:\/\/locaterisk.com\/cve-2026-49109\/#primaryimage"},"image":{"@id":"https:\/\/locaterisk.com\/cve-2026-49109\/#primaryimage"},"thumbnailUrl":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured.png","datePublished":"2026-06-16T10:43:40+00:00","dateModified":"2026-06-16T11:54:31+00:00","description":"Kritische Schwachstelle CVE-2026-49109 (CVSS 9.8) im WordPress-Plugin cf7-salesforce erm\u00f6glicht PHP Object Injection. Alle Versionen &lt;= 1.4.3 sind.","breadcrumb":{"@id":"https:\/\/locaterisk.com\/cve-2026-49109\/#breadcrumb"},"inLanguage":"fr-FR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/locaterisk.com\/cve-2026-49109\/"]}]},{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/locaterisk.com\/cve-2026-49109\/#primaryimage","url":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured.png","contentUrl":"https:\/\/locaterisk.com\/wp-content\/uploads\/2026\/06\/cve-2026-49109-featured.png","width":400,"height":400,"caption":"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce"},{"@type":"BreadcrumbList","@id":"https:\/\/locaterisk.com\/cve-2026-49109\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/locaterisk.com\/"},{"@type":"ListItem","position":2,"name":"CVE-2026-49109: Kritische L\u00fccke in WordPress-Plugin f\u00fcr Salesforce"}]},{"@type":"WebSite","@id":"https:\/\/locaterisk.com\/de\/#website","url":"https:\/\/locaterisk.com\/de\/","name":"LocateRisk","description":"Mesurer et comparer la s\u00e9curit\u00e9 informatique","publisher":{"@id":"https:\/\/locaterisk.com\/de\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/locaterisk.com\/de\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"fr-FR"},{"@type":"Organization","@id":"https:\/\/locaterisk.com\/de\/#organization","name":"LocateRisk","url":"https:\/\/locaterisk.com\/de\/","logo":{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/locaterisk.com\/de\/#\/schema\/logo\/image\/","url":"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/11\/Kettenglieder_V0216-9.jpg","contentUrl":"https:\/\/locaterisk.com\/wp-content\/uploads\/2020\/11\/Kettenglieder_V0216-9.jpg","width":1920,"height":1080,"caption":"LocateRisk"},"image":{"@id":"https:\/\/locaterisk.com\/de\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/locaterisk\/"]},{"@type":"Person","@id":"https:\/\/locaterisk.com\/de\/#\/schema\/person\/68f3857c15afa8ff59c545848dddcc32","name":"Kristina Hoinkis","image":{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/secure.gravatar.com\/avatar\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/7756f96249844e60ceb218f17e06217dcbed4993bcd2124e3f59bb8675324f0d?s=96&d=mm&r=g","caption":"Kristina Hoinkis"}}]}},"_links":{"self":[{"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/posts\/8602","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/users\/13"}],"replies":[{"embeddable":true,"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/comments?post=8602"}],"version-history":[{"count":6,"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/posts\/8602\/revisions"}],"predecessor-version":[{"id":8611,"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/posts\/8602\/revisions\/8611"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/media\/8601"}],"wp:attachment":[{"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/media?parent=8602"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/categories?post=8602"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/locaterisk.com\/fr\/wp-json\/wp\/v2\/tags?post=8602"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}