cleantalk
Vulnerabilities and Security Researches

WP Author box, Bio link and Post Rating – Authorsy, CVE-2026-24950

CVE, Research URL

CVE-2026-24950

Home page URL

Security reports for WP Author box, Bio link and Post Rating – Authorsy

Application

WP Author box, Bio link and Post Rating – Authorsy

Published on
Feb 20, 2026
Research Description
Authorization Bypass Through User-Controlled Key vulnerability in themeplugs Authorsy authorsy allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Authorsy: from n/a through <= 1.0.6.
Affected versions
max 1.0.6.
Status
vulnerable
Previous vulnerability researches
User Profile Builder &#8211; Beautiful User Registration Forms, User Profiles &amp; User Role Editor (CVE-2024-12738) , Jan 09, 2025
User Profile Builder &#8211; Beautiful User Registration Forms, User Profiles &amp; User Role Editor (CVE-2024-6366) , Jul 30, 2024
User Profile Builder &#8211; Beautiful User Registration Forms, User Profiles &amp; User Role Editor (CVE-2025-4671) , Jun 15, 2025
User Profile Builder &#8211; Beautiful User Registration Forms, User Profiles &amp; User Role Editor (CVE-2025-13054) , Dec 04, 2025
User Profile Builder &#8211; Beautiful User Registration Forms, User Profiles &amp; User Role Editor (CVE-2025-15030) , Feb 27, 2026
New vulnerability
Everest Forms – Build Contact Forms, Surveys, Polls, Application Forms, and more with Ease! (CVE-2026-22422) , Feb 27, 2026
WooCommerce Checkout &amp; Funnel Builder by CartFlows – Create High Converting Stores For WooCommerce (CVE-2026-25316) , Feb 27, 2026
Autopost for X (formerly Autoshare for Twitter) (CVE-2026-25311) , Feb 27, 2026
Mopinion Feedback Form (CVE-2025-68856) , Feb 27, 2026
Country Blocker for AdSense (CVE-2025-13413) , Feb 27, 2026