21393 matches found
CVE-2026-25000
Missing Authorization vulnerability in Kraft Plugins Wheel of Life wheel-of-life allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wheel of Life: from n/a through = 1.2.0...
CVE-2026-23545
Missing Authorization vulnerability in Aruba.it Dev Aruba HiSpeed Cache aruba-hispeed-cache allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Aruba HiSpeed Cache: from n/a through = 3.0.4...
CVE-2026-23543
Missing Authorization vulnerability in WPDeveloper Essential Addons for Elementor essential-addons-for-elementor-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Essential Addons for Elementor: from n/a through = 6.5.5...
CVE-2026-23548
Missing Authorization vulnerability in Designinvento DirectoryPress directorypress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DirectoryPress: from n/a through = 3.6.25...
CVE-2026-23541
Missing Authorization vulnerability in WPFunnels Mail Mint mail-mint allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Mail Mint: from n/a through = 1.19.4...
CVE-2026-26358
Dell Unisphere for PowerMax, versions 10.2, contains a Missing Authorization vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...
CVE-2026-26358
Dell Unisphere for PowerMax, versions 10.2, contains a Missing Authorization vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...
CVE-2026-26358
Dell Unisphere for PowerMax, versions 10.2, contains a Missing Authorization vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...
CVE-2026-26358
Dell Unisphere for PowerMax 10.2 contains a Missing Authorization vulnerability that could allow a low-privileged, remote attacker to gain unauthorized access. Recorded CVSSv3.1 base score 8.8 (HIGH) with network access, low attack complexity, and privileges required: LOW; impact to confidentiali...
CVE-2026-27092
CVE-2026-27092 describes a Missing Authorization (broken access control) vulnerability in the WordPress WPAdverts plugin, affecting WPAdverts versions up to and including 2.3.0 (some sources list up to 2.2.11). The issue is tied to misconfigured access control on WPAdverts, enabling unauthorized ...
CVE-2026-27092 WordPress WPAdverts plugin <= 2.3.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Greg Winiarski WPAdverts wpadverts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPAdverts: from n/a through = 2.3.0...
CVE-2026-27066
...
CVE-2026-27066
Missing Authorization vulnerability in PI Web Solution Live sales notification for WooCommerce live-sales-notifications-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Live sales notification for WooCommerce: from n/a through = 2.3.61...
CVE-2026-27066
...
CVE-2026-27066
CVE-2026-27066 corresponds to a Missing/Incorrectly Configured Authorization in the WordPress plugin Live Sales Notification for WooCommerce. Red Hat and Patch sources describe an access-control vulnerability in Live Sales Notification for WooCommerce (the plugin) with vulnerable versions documen...
CVE-2026-27042 WordPress NotificationX plugin <= 3.2.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in WPDeveloper NotificationX notificationx allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects NotificationX: from n/a through = 3.2.1...
CVE-2026-27055 WordPress Penci AI SmartContent Creator plugin <= 2.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in PenciDesign Penci AI SmartContent Creator penci-ai allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Penci AI SmartContent Creator: from n/a through = 2.0...
CVE-2026-27042
CVE-2026-27042 affects the WordPress NotificationX plugin (versions <= 3.2.1). The issue is described as a Missing Authorization vulnerability due to incorrectly configured access control in NotificationX, enabling a broken/unauthorized access scenario. Public sources in the connected document...
CVE-2026-25473
Missing Authorization vulnerability in AA-Team WZone woozone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WZone: from n/a through = 14.0.31...
CVE-2026-27042
Missing Authorization vulnerability in WPDeveloper NotificationX notificationx allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects NotificationX: from n/a through = 3.2.1...