Medium severity4.3NVD Advisory· Published Mar 31, 2026· Updated Apr 24, 2026
CVE-2026-3139
CVE-2026-3139
Description
The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to, and including, 3.15.5 via the wppb_save_avatar_value() function due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with subscriber-level access and above, to reassign ownership of arbitrary posts and attachments by changing 'post_author'.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- WordPress/User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editorllm-createRange: <=3.15.5
Patches
Vulnerability mechanics
References
2News mentions
1- Wordfence Intelligence Weekly WordPress Vulnerability Report (March 30, 2026 to April 5, 2026)Wordfence Blog · Apr 9, 2026