EUVD-2022-56005

Missing Authorization vulnerability in BeRocket Advanced AJAX Product Filters allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Advanced AJAX Product Filters: from n/a through 1.6.3.3...

CVE-2026-26236 QuMagie

A missing authorization vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to access unauthorized data or perform unauthorized actions. We have already fixed the vulnerability in the following version: QuMagie 2.9.0 and later...

EUVD-2026-35347

A missing authorization vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to access unauthorized data or perform unauthorized actions. We have already fixed the vulnerability in the following version: QuMagie 2.9.0 and later...

CVE-2026-27351

Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2...

CVE-2026-45443

Missing Authorization vulnerability in ADD-ONS.ORG PDF for Elementor Forms + Drag And Drop Template Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects PDF for Elementor Forms + Drag And Drop Template Builder: from n/a through 5.5.1...

PT-2026-33039

Name of the Vulnerable Software and Affected Versions Magazine Blocks versions prior to 1.8.4 Description BlockArt Magazine Blocks contains a missing authorization flaw that allows the exploitation of incorrectly configured access control security levels. Recommendations Update to a version later...

CVE-2026-39622

Missing Authorization vulnerability in acmethemes Education Base education-base allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Education Base: from n/a through = 3.0.8...

EUVD-2026-20354

Missing Authorization vulnerability in webmuehle Court Reservation court-reservation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Court Reservation: from n/a through = 1.10.11...

EUVD-2026-20172

Missing Authorization vulnerability in Jordy Meow AI Engine Pro ai-engine-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AI Engine Pro: from n/a through 3.4.2...

CVE-2026-39660

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

PT-2026-27939

Name of the Vulnerable Software and Affected Versions Arni Cinco WPCargo Track & Trace versions n/a through 8.0.2 Description An authorization issue exists in Arni Cinco WPCargo Track & Trace wpcargo due to incorrectly configured access control security levels. This allows for exploitation of the...

PT-2026-27856

Name of the Vulnerable Software and Affected Versions WPVulnerability versions through 4.2.1 Description An authorization issue exists in Javier Casares WPVulnerability wpvulnerability. The issue stems from incorrectly configured access control security levels, potentially allowing unauthorized...

WordPress WP-Chatbot for Messenger plugin <= 4.9 - Missing Authorization to Unauthenticated Chatbot Configuration Takeover vulnerability

Missing Authorization to Unauthenticated Chatbot Configuration Takeover vulnerability discovered by Kazuma Matsumoto - GMO Cybersecurity by IERAE, Inc. in WordPress Plugin WP-Chatbot for Messenger versions = 4.9...

EUVD-2026-11993

Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Atarim: from n/a through = 4.3.2...

EUVD-2026-11887

Missing Authorization vulnerability in raratheme Ridhi ridhi allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ridhi: from n/a through = 1.1.2...

EUVD-2026-11880

Missing Authorization vulnerability in raratheme Book Landing Page book-landing-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Book Landing Page: from n/a through = 1.2.7...

PT-2026-21026

Name of the Vulnerable Software and Affected Versions SecuPress Free versions through 2.2.5.3 Description A missing authorization issue exists in SecuPress Free. The issue allows unauthorized access. Recommendations Update SecuPress Free to a version later than 2.2.5.3...

PT-2026-21076

Name of the Vulnerable Software and Affected Versions GA4WP: Google Analytics for WordPress versions through 2.10.0 Description An authorization issue exists in Passionate Brains GA4WP: Google Analytics for WordPress. The issue involves exploiting incorrectly configured access control security...

PT-2026-21050

Name of the Vulnerable Software and Affected Versions VillaTheme HAPPY versions through 1.0.8 Description The software contains a missing authorization flaw due to incorrectly configured access control security levels. This allows for potential exploitation. Recommendations Update VillaTheme HAPP...

PT-2026-21121

Name of the Vulnerable Software and Affected Versions Saad Iqbal New User Approve versions through 3.2.0 Description An authorization issue exists in the New User Approve functionality, allowing exploitation due to incorrectly configured access control security levels. The affected functionality ...