Sign in Subscribe

← All advisories

High severity8.2NVD Advisory· Published May 12, 2026· Updated May 12, 2026

CVE-2026-39432

CVE-2026-39432

Description

Missing Authorization vulnerability in Arraytics Timetics allows Exploiting Incorrectly Configured Access Control Security Levels.

This issue affects Timetics: from n/a through 1.0.53.

Affected products

1

WordPress/Timeticsinferred
Range: <=1.0.53
Package: https://wordpress.org/plugins/timetics

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

patchstack.com/database/wordpress/plugin/timetics/vulnerability/wordpress-timetics-plugin-1-0-53-broken-access-control-vulnerabilitynvd

News mentions

1

Wordfence Intelligence Weekly WordPress Vulnerability Report (April 6, 2026 to April 12, 2026)
Wordfence Blog · Apr 16, 2026