PT-2026-28059

Missing Authorization vulnerability in StellarWP Restrict Content restrict-content allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Restrict Content: from n/a through = 3.2.22...

PT-2026-27996

Name of the Vulnerable Software and Affected Versions Product Rearrange for WooCommerce versions through 1.2.2 Description An authorization flaw exists in Product Rearrange for WooCommerce. This issue allows exploitation of incorrectly configured access control security levels. Recommendations...

PT-2026-27876

Name of the Vulnerable Software and Affected Versions WP System Log versions through 1.2.7 Description An authorization issue exists in activity-log.com WP System Log winterlock. This allows exploitation of incorrectly configured access control security levels. Recommendations Update WP System Lo...

PT-2026-27893

Name of the Vulnerable Software and Affected Versions Iqonic Design KiviCare versions n/a through 3.6.16 Description An authorization issue exists in Iqonic Design KiviCare’s kivicare-clinic-management-system. This allows exploitation of incorrectly configured access control security levels...

PT-2026-27923

Name of the Vulnerable Software and Affected Versions Kargo Takip versions prior to 0.2.4 Description A missing authorization flaw exists in Özgür KARALAR Kargo Takip kargo-takip-turkiye. This issue stems from incorrectly configured access control security levels, potentially allowing unauthorize...

PT-2026-27937

Name of the Vulnerable Software and Affected Versions Webilia Inc. Vertex Addons for Elementor versions through 1.6.4 Description An incorrect access control configuration exists in Webilia Inc. Vertex Addons for Elementor. This allows exploitation due to missing authorization checks...

PT-2026-27951

Name of the Vulnerable Software and Affected Versions PickPlugins Product Slider for WooCommerce versions through 1.13.60 Description The software contains a flaw related to incorrectly configured access control security levels, leading to a missing authorization issue. This allows for potential...

PT-2026-27972

Name of the Vulnerable Software and Affected Versions Arraytics WPCafe versions n/a through 3.0.7 Description An authorization issue exists in Arraytics WPCafe wp-cafe due to incorrectly configured access control security levels. This allows for exploitation of the system. Recommendations Update...

PT-2026-27957

Name of the Vulnerable Software and Affected Versions avalex versions through 3.1.3 Description An authorization issue exists in avalex. The problem involves exploiting incorrectly configured access control security levels. Recommendations At the moment, there is no information about a newer...

PT-2026-27955

Name of the Vulnerable Software and Affected Versions LiquidThemes Ave Core versions through 2.9.1 Description An authorization issue exists in LiquidThemes Ave Core. The problem stems from incorrectly configured access control security levels, potentially allowing unauthorized access...

PT-2026-27947

Missing Authorization vulnerability in سید محمدامین هاشمی GZSEO gzseo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GZSEO: from n/a through = 2.0.14...

PT-2026-27935

Name of the Vulnerable Software and Affected Versions CoderPress Commerce Coinbase For WooCommerce versions through 1.6.6 Description An authorization issue exists in CoderPress Commerce Coinbase For WooCommerce commerce-coinbase-for-woocommerce. The issue involves exploiting incorrectly configur...

PT-2026-27856

Name of the Vulnerable Software and Affected Versions WPVulnerability versions through 4.2.1 Description An authorization issue exists in Javier Casares WPVulnerability wpvulnerability. The issue stems from incorrectly configured access control security levels, potentially allowing unauthorized...

PT-2026-27852

Name of the Vulnerable Software and Affected Versions The Grid versions prior to 2.8.0 Description An authorization issue exists in Theme-one The Grid. The problem stems from incorrectly configured access control security levels, potentially allowing unauthorized access. Recommendations Update Th...

PT-2026-27846

Name of the Vulnerable Software and Affected Versions WPFactory Helpdesk Support Ticket System for WooCommerce versions through 2.1.2 Description An authorization issue exists in WPFactory Helpdesk Support Ticket System for WooCommerce. The issue involves incorrectly configured access control...

PT-2026-28028

Name of the Vulnerable Software and Affected Versions Petitioner versions n/a through 0.7.3 Description An authorization issue exists in Petitioner, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Petitioner to a version newer than 0.7.3...

PT-2026-28029

Name of the Vulnerable Software and Affected Versions Miraculous versions prior to 2.1.2 Description An authorization issue exists in Miraculous, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Miraculous to version 2.1.2 or later...

PT-2026-28015

Missing Authorization vulnerability in wp-configurator WP Configurator Pro wp-configurator-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Configurator Pro: from n/a through = 3.7.9...

PT-2026-27950

Name of the Vulnerable Software and Affected Versions MVPThemes The League versions through 4.4.1 Description A missing authorization flaw exists in MVPThemes The League. This allows exploitation of incorrectly configured access control security levels. Recommendations Update MVPThemes The League...

WordPress plugin Petitioner 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...