cleantalk
Vulnerabilities and Security Researches

YITH WooCommerce Wishlist, CVE-2026-27329

CVE, Research URL

CVE-2026-27329

Home page URL

Security reports for YITH WooCommerce Wishlist

Application

YITH WooCommerce Wishlist

Published on
May 07, 2026
Research Description
Authorization Bypass Through User-Controlled Key vulnerability in YITH YITH WooCommerce Wishlist allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects YITH WooCommerce Wishlist: from n/a through 4.12.0.
Affected versions
max 4.13.0.
Status
vulnerable
Previous vulnerability researches
Easy 3D Viewer (CVE-2025-2540) , May 08, 2026
Easy 3D Viewer (fb2e1bb3521d3147fbf4886d171a91edce069e89) , Jul 05, 2025
New vulnerability
Team Member – Multi Language Supported Team Plugin (CVE-2025-68060) , May 09, 2026
E2Pdf – Export To Pdf Tool for WordPress (CVE-2026-7650) , May 09, 2026
YouTube Embed, Playlist and Popup by WpDevArt (CVE-2025-2537) , May 09, 2026
Awesome Gallery (CVE-2025-2540) , May 09, 2026
Auto Thickbox (CVE-2025-2537) , May 09, 2026