cleantalk
Vulnerabilities and Security Researches

Post Ticker Ultimate, adef06891bf0c197fcec661504b5c06a996df18d

CVE, Research URL

adef06891bf0c197fcec661504b5c06a996df18d

Home page URL

Security reports for Post Ticker Ultimate

Application

Post Ticker Ultimate

Published on
Aug 16, 2023
Research Description
Post Ticker Ultimate [ticker-ultimate] < 1.5.6 WordPress Post Ticker Ultimate Plugin <= 1.5.5 is vulnerable to Broken Access Control Update the WordPress Post Ticker Ultimate plugin to the latest available version (at least 1.5.6). Abdi Pranata discovered and reported this Broken Access Control vulnerability in WordPress Post Ticker Ultimate Plugin. A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action. This vulnerability has been fixed in version 1.5.6.
Affected versions
max 1.5.6.
Status
vulnerable
Previous vulnerability researches
Post Ticker Ultimate (CVE-2026-6443) , Apr 23, 2026
Post Ticker Ultimate (adef06891bf0c197fcec661504b5c06a996df18d) , Jun 06, 2024
New vulnerability
Image Hover Effects Ultimate (Image Gallery, Effects, Lightbox, Comparison or Magnifier) (CVE-2025-5092) , Apr 24, 2026
LightGallery WP (CVE-2025-5092) , Apr 24, 2026
Private WP suite (CVE-2026-2719) , Apr 24, 2026
Sitekit (CVE-2025-58229) , Apr 24, 2026
Skimlinks Affiliate Marketing Tool (CVE-2025-57944) , Apr 24, 2026