Medium severity4.3NVD Advisory· Published Feb 19, 2026· Updated Apr 15, 2026
CVE-2026-25410
CVE-2026-25410
Description
Missing Authorization vulnerability in tstephenson WP-CORS wp-cors allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP-CORS: from n/a through <= 0.2.2.
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.