PT-2026-27939 · Arni Cinco · Arni Cinco Wpcargo Track & Trace

Published

2026-03-25

Updated

2026-03-29

CVE-2026-25401

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Arni Cinco WPCargo Track & Trace versions n/a through 8.0.2

Description An authorization issue exists in Arni Cinco WPCargo Track & Trace wpcargo due to incorrectly configured access control security levels. This allows for exploitation of the system.

Recommendations Versions prior to 8.0.3 should be updated.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2026-25401

Affected Products

Arni Cinco Wpcargo Track & Trace

PT-2026-27939 · Arni Cinco · Arni Cinco Wpcargo Track & Trace

CVE-2026-25401

Weakness Enumeration

Related Identifiers

Affected Products

References · 4