21350 matches found
CVE-2026-32436
CVE-2026-32436 concerns the WordPress VW Photography theme (vw-photography) up to version 1.3.8, where a Missing Authorization vulnerability constitutes a Broken Access Control issue due to incorrectly configured security levels. The affected product is the VW Photography theme for WordPress; the...
CVE-2026-32439
Missing Authorization vulnerability in WebGeniusLab BigHearts bighearts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BigHearts: from n/a through = 3.1.14...
CVE-2026-32439
The CVE-2026-32439 entry concerns the WordPress BigHearts theme (versions up to 3.1.14). The description identifies a Missing Authorization vulnerability caused by Incorrectly Configured Access Control Security Levels, affecting BigHearts from n/a through 3.1.14. The Connected records do not prov...
CVE-2026-32438 WordPress VW School Education theme <= 1.4.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in vowelweb VW School Education vw-school-education allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW School Education: from n/a through = 1.4.6...
CVE-2026-32440
Missing Authorization vulnerability in Ex-Themes WP Food wp-food allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Food: from n/a through 2.7.1...
CVE-2026-32440
Vulnerability: CVE-2026-32440 affects the WordPress WP Food plugin prior to version 2.7.1, due to a Missing Authorization vulnerability (Broken Access Control) in wp-food. Impacted: WP Food
CVE-2026-32442
Missing Authorization vulnerability in E2Pdf e2pdf e2pdf allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects e2pdf: from n/a through = 1.28.15...
CVE-2026-32434
The CVE-2026-32434 entry describes a Missing Authorization vulnerability in the WordPress VW Fitness theme (vw-fitness) by vowelweb, affecting versions from n/a up to and including 4.3.4. The issue is categorized as Broken Access Control due to incorrectly configured access control security level...
CVE-2026-32432
CVE-2026-32432 concerns the WordPress plugin WP Time Slots Booking Form (plugin version <= 1.2.42) and describes a Missing Authorization vulnerability due to potentially misconfigured access control. The affected component is the plugin’s booking form functionality (wp-time-slots-booking-form)...
CVE-2026-32435 WordPress VW Pet Shop theme <= 1.4.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in vowelweb VW Pet Shop vw-pet-shop allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Pet Shop: from n/a through = 1.4.7...
CVE-2026-32434 WordPress VW Fitness theme <= 4.3.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Fitness: from n/a through = 4.3.4...
CVE-2026-32432 WordPress WP Time Slots Booking Form plugin <= 1.2.42 - Broken Access Control vulnerability
Missing Authorization vulnerability in codepeople WP Time Slots Booking Form wp-time-slots-booking-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Time Slots Booking Form: from n/a through = 1.2.42...
CVE-2026-32435
Missing Authorization vulnerability in vowelweb VW Pet Shop vw-pet-shop allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Pet Shop: from n/a through = 1.4.7...
CVE-2026-32435 WordPress VW Pet Shop theme <= 1.4.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in vowelweb VW Pet Shop vw-pet-shop allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Pet Shop: from n/a through = 1.4.7...
CVE-2026-32434
Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects VW Fitness: from n/a through = 4.3.4...
CVE-2026-32432
Missing Authorization vulnerability in codepeople WP Time Slots Booking Form wp-time-slots-booking-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Time Slots Booking Form: from n/a through = 1.2.42...
CVE-2026-32435
The CVE-2026-32435 entry concerns the WordPress VW Pet Shop theme (<= 1.4.7) with a Missing Authorization vulnerability, described as Broken Access Control due to incorrectly configured access control levels. Affected component: VW Pet Shop vw-pet-shop; impact is exposure due to insufficient a...
CVE-2026-32428
The CVE affects WordPress Popup Like box plugin
CVE-2026-32428 WordPress Popup Like box plugin <= 3.7.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in Ays Pro Popup Like box ays-facebook-popup-likebox allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup Like box: from n/a through = 3.7.7...
CVE-2026-32428 WordPress Popup Like box plugin <= 3.7.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in Ays Pro Popup Like box ays-facebook-popup-likebox allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup Like box: from n/a through = 3.7.7...