PT-2026-4372

Name of the Vulnerable Software and Affected Versions MyThemeShop WP Subscribe versions through 1.2.16 Description An authorization issue exists in MyThemeShop WP Subscribe wp-subscribe, allowing exploitation due to incorrectly configured access control security levels. Recommendations Update WP...

PT-2026-4390

Name of the Vulnerable Software and Affected Versions Materialis Companion versions through 1.3.52 Description A missing authorization issue exists in Materialis Companion, allowing exploitation due to incorrectly configured access control security levels. Recommendations Update Materialis...

PT-2026-4418

Name of the Vulnerable Software and Affected Versions WP Messiah Ai Image Alt Text Generator for WP versions through 1.1.9 Description The Ai Image Alt Text Generator for WP software contains a missing authorization flaw. This allows exploitation due to incorrectly configured access control...

PT-2026-4404

Name of the Vulnerable Software and Affected Versions Ryviu – Product Reviews for WooCommerce versions through 3.1.26 Description Ryviu – Product Reviews for WooCommerce contains a flaw related to incorrectly configured access control security levels, potentially allowing unauthorized access...

PT-2026-4423

Name of the Vulnerable Software and Affected Versions Hyyan WooCommerce Polylang Integration versions through 1.5.0 Description A missing authorization issue exists in Hyyan WooCommerce Polylang Integration. The issue is due to incorrectly configured access control security levels, potentially...

PT-2026-4388

Name of the Vulnerable Software and Affected Versions Download After Email versions through 2.1.9 Description A missing authorization issue exists in the Download After Email software. This flaw stems from incorrectly configured access control security levels, potentially allowing unauthorized...

PT-2026-4421

Name of the Vulnerable Software and Affected Versions SumUp Payment Gateway For WooCommerce versions through 2.7.9 Description The SumUp Payment Gateway For WooCommerce has a flaw related to incorrectly configured access control security levels, potentially allowing unauthorized access...

PT-2026-4402

Name of the Vulnerable Software and Affected Versions Cloudinary versions prior to 3.3.0 Description An authorization issue exists in Cloudinary, a cloud-based image and video management platform. This issue involves incorrectly configured access control security levels, potentially allowing...

PT-2026-4410

Name of the Vulnerable Software and Affected Versions WP Travel versions through 11.0.0 Description An authorization issue exists in WP Travel. The vulnerability allows exploitation of incorrectly configured access control security levels. Recommendations Update WP Travel to a version later than...

PT-2026-4441

Name of the Vulnerable Software and Affected Versions Travel Monster versions through 1.3.3 Description An issue exists in Travel Monster related to incorrectly configured access control security levels, allowing for missing authorization. The vulnerability allows exploitation of these levels...

PT-2026-4379

Name of the Vulnerable Software and Affected Versions sheepfish WebP Conversion versions through 2.1 Description An issue exists in sheepfish WebP Conversion related to incorrectly configured access control security levels, allowing for missing authorization. The issue allows exploitation due to...

PT-2026-4444

Name of the Vulnerable Software and Affected Versions Orchid Store versions through 1.5.15 Description An issue exists in Orchid Store related to incorrectly configured access control security levels, allowing for missing authorization. The vulnerability allows exploitation due to this access...

PT-2026-4387

Name of the Vulnerable Software and Affected Versions Prince Integrate Google Drive versions through 1.5.5 Description An authorization issue exists in Prince Integrate Google Drive’s integrate-google-drive component, allowing exploitation of incorrectly configured access control security levels...

PT-2026-4391

Name of the Vulnerable Software and Affected Versions HD Quiz versions through 2.0.9 Description The software contains a missing authorization issue due to incorrectly configured access control security levels. This allows for exploitation of the system. Recommendations Update HD Quiz to a versio...

PT-2026-4440

Name of the Vulnerable Software and Affected Versions Bayarcash WooCommerce versions through 4.3.11 Description A missing authorization issue exists in Bayarcash WooCommerce bayarcash-wc, allowing exploitation of incorrectly configured access control security levels. Recommendations Update...

PT-2026-4430

Name of the Vulnerable Software and Affected Versions Zoho CRM Lead Magnet versions through 1.8.1.5 Description An authorization issue exists in Zoho CRM Lead Magnet zoho-crm-forms, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Zoho CRM Lea...

PT-2026-4463

Name of the Vulnerable Software and Affected Versions Passionate Brains Add Expires Headers & Optimized Minify versions through 3.1.0 Description An authorization issue exists in Passionate Brains Add Expires Headers & Optimized Minify. The issue involves incorrectly configured access control...

PT-2026-4436

Name of the Vulnerable Software and Affected Versions Raptive Ads versions through 3.10.0 Description A missing authorization issue exists in Raptive Ads adthrive-ads, allowing exploitation due to incorrectly configured access control security levels. Recommendations Update Raptive Ads to a versi...

PT-2026-4417

Name of the Vulnerable Software and Affected Versions Jahid Hasan Admin login URL Change versions through 1.1.5 Description An authorization issue exists in the Admin login URL Change functionality, specifically related to incorrectly configured access control security levels. This allows for...

PT-2026-4439

Name of the Vulnerable Software and Affected Versions X Addons for Elementor versions through 1.0.23 Description An issue exists in X Addons for Elementor where incorrectly configured access control security levels can be exploited, leading to a missing authorization condition. The vulnerability...