cleantalk
Vulnerabilities and Security Researches

WP-CORS, CVE-2026-25410

CVE, Research URL

CVE-2026-25410

Home page URL

Security reports for WP-CORS

Application

WP-CORS

Published on
Feb 19, 2026
Research Description
Missing Authorization vulnerability in tstephenson WP-CORS wp-cors allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP-CORS: from n/a through <= 0.2.2.
Affected versions
max 0.2.2.
Status
vulnerable
Previous vulnerability researches
WP-CORS (CVE-2026-25410) , Feb 27, 2026
WP-CORS (CVE-2022-47606) , Jun 07, 2024
New vulnerability
ElementInvader Addons for Elementor (CVE-2026-25028) , Feb 27, 2026
SportsPress &#8211; Sports Club &amp; League Manager (CVE-2025-15368) , Feb 27, 2026
Addonify &#8211; WooCommerce Wishlist (CVE-2025-68024) , Feb 27, 2026
Cool Tag Cloud (CVE-2025-69011) , Feb 27, 2026
WP Wizard Cloak (CVE-2025-53237) , Feb 27, 2026