Medium severity6.5NVD Advisory· Published Mar 25, 2026· Updated Apr 24, 2026
CVE-2026-24364
CVE-2026-24364
Description
Missing Authorization vulnerability in weDevs WP User Frontend wp-user-frontend allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP User Frontend: from n/a through <= 4.2.5.
Affected products
1- Range: <=4.2.5
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.