Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 27 May 2026 12:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Wclovers
Wclovers wcfm Membership Wordpress Wordpress wordpress |
|
| Vendors & Products |
Wclovers
Wclovers wcfm Membership Wordpress Wordpress wordpress |
Wed, 27 May 2026 11:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 27 May 2026 10:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WCFM Membership: from n/a through <= 2.11.10. | |
| Title | WordPress WCFM Membership plugin <= 2.11.10 - Broken Access Control vulnerability | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-05-27T10:49:37.618Z
Reserved: 2026-04-29T09:05:35.592Z
Link: CVE-2026-42753
Updated: 2026-05-27T10:49:32.484Z
Status : Deferred
Published: 2026-05-27T11:16:21.760
Modified: 2026-06-17T10:48:20.503
Link: CVE-2026-42753
No data.
OpenCVE Enrichment
Updated: 2026-05-27T12:00:32Z