cleantalk
Vulnerabilities and Security Researches

WP Sync for Notion – Notion to WordPress, CVE-2026-25020

CVE, Research URL

CVE-2026-25020

Home page URL

Security reports for WP Sync for Notion – Notion to WordPress

Application

WP Sync for Notion – Notion to WordPress

Published on
Feb 03, 2026
Research Description
Missing Authorization vulnerability in WP connect WP Sync for Notion wp-sync-for-notion allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Sync for Notion: from n/a through <= 1.7.0.
Affected versions
max 1.7.0.
Status
vulnerable
Previous vulnerability researches
WP Sync for Notion &#8211; Notion to WordPress (CVE-2026-25020) , Feb 27, 2026
New vulnerability
Rental and Booking Manager for Bike, Car, Dress, Resort with WooCommerce Integration &#8211; WpRently | WordPress plugin (CVE-2025-69328) , Feb 27, 2026
Widget Logic Visual (CVE-2025-68842) , Feb 27, 2026
OneClick Chat to Order (CVE-2025-14270) , Feb 27, 2026
OAuth Single Sign On &#8211; SSO (OAuth Client) (CVE-2025-10753) , Feb 27, 2026
ElementInvader Addons for Elementor (CVE-2026-25028) , Feb 27, 2026