Medium severity4.3NVD Advisory· Published May 25, 2026· Updated May 26, 2026
CVE-2026-24527
CVE-2026-24527
Description
Missing Authorization vulnerability in Patterns in the cloud Autoship Cloud for WooCommerce Subscription Products allows Exploiting Incorrectly Configured Access Control Security Levels.
This issue affects Autoship Cloud for WooCommerce Subscription Products: from n/a through 2.14.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=2.14.0+ 1 more
- (no CPE)range: <=2.14.0
- (no CPE)range: <=2.14.0
Patches
Vulnerability mechanics
References
1News mentions
1- Wordfence Intelligence Weekly WordPress Vulnerability Report (May 25, 2026 to May 31, 2026)Wordfence Blog · Jun 4, 2026