PT-2026-43139 · WordPress · B2Bking

·

CVE-2026-27346

·

Published

2026-05-25

·

Updated

2026-05-26

CVSS v3.1

4.9

Medium

VectorAV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions B2BKing versions prior to 5.2.10
Description A missing authorization issue allows for the exploitation of incorrectly configured access control security levels. This is a broken access control flaw where the system fails to properly verify if a user has the necessary permissions to perform an action.
Recommendations Update to version 5.2.10 or later.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-27346

Affected Products

B2Bking