cleantalk
Vulnerabilities and Security Researches

Endless Posts Navigation, CVE-2026-25332

CVE, Research URL

CVE-2026-25332

Home page URL

Security reports for Endless Posts Navigation

Application

Endless Posts Navigation

Published on
Feb 19, 2026
Research Description
Missing Authorization vulnerability in Fahad Mahmood Endless Posts Navigation endless-posts-navigation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Endless Posts Navigation: from n/a through <= 2.2.9.
Affected versions
max 2.2.9.
Status
vulnerable
Previous vulnerability researches
WooCommerce Google Analytics Integration By Advanced WC Analytics (d095e159647fd580437771b652b33a4f90ec168f) , Jun 07, 2024
WooCommerce Google Analytics Integration By Advanced WC Analytics (CVE-2022-4974) , Nov 16, 2024
WooCommerce Google Analytics Integration By Advanced WC Analytics (CVE-2025-68032) , Feb 27, 2026
New vulnerability
Printful Integration for WooCommerce (CVE-2025-12375) , Feb 27, 2026
PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes (CVE-2026-25322) , Feb 27, 2026
Page Builder Gutenberg Blocks – CoBlocks (CVE-2026-27094) , Feb 27, 2026
ElementsKit Elementor addons (CVE-2026-23693) , Feb 27, 2026
Stop Spammers Security | Block Spam Users, Comments, Forms (CVE-2025-14795) , Feb 27, 2026