CVE-2026-32379 WordPress Rara Academic theme <= 1.2.2 - Broken Access Control vulnerability

🗓️ 13 Mar 2026 11:42:08Reported by PatchstackType

WordPress Rara Academic theme up to 1.2.2 suffers broken access control due to missing authorization.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2026-32379	13 Mar 202611:42	–	attackerkb
CNNVD	WordPress plugin Rara Academic 安全漏洞	13 Mar 202600:00	–	cnnvd
CVE	CVE-2026-32379	13 Mar 202611:42	–	cve
EUVD	EUVD-2026-11881	13 Mar 202621:31	–	euvd
NVD	CVE-2026-32379	13 Mar 202619:54	–	nvd
Positive Technologies	PT-2026-25226	13 Mar 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-32379	26 Mar 202615:17	–	redhatcve
Vulnrichment	CVE-2026-32379 WordPress Rara Academic theme <= 1.2.2 - Broken Access Control vulnerability	13 Mar 202611:42	–	vulnrichment

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "rara-academic",
    "product": "Rara Academic",
    "vendor": "raratheme",
    "versions": [
      {
        "changes": [
          {
            "at": "1.2.3",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "1.2.2",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/Wordpress/Theme/rara-academic/vulnerability/wordpress-rara-academic-theme-1-2-2-broken-access-control-vulnerability

29 Apr 2026 09:51Current

CVSS 3.15.3

EPSS0.00042

CWE-862