exploitDog

CVE-2026-25410

Опубликовано: 19 фев. 2026

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

Missing Authorization vulnerability in tstephenson WP-CORS wp-cors allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP-CORS: from n/a through <= 0.2.2.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/wp-cors/vulnerability/wordpress-wp-cors-plugin-0-2-2-broken-access-control-vulnerability?_s_id=cve

EPSS

Процентиль: 14%

0.00235

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-h3vc-4h48-9gjq

CVSS3: 4.3

github

4 месяца назад

Missing Authorization vulnerability in tstephenson WP-CORS wp-cors allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP-CORS: from n/a through <= 0.2.2.

EPSS

Процентиль: 14%

0.00235

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862