PT-2026-4448 · WordPress · Damian Wp Popups

Theviper

Published

2026-01-23

Updated

2026-01-24

CVE-2026-24616

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Damian WP Popups versions through 2.2.0.3

Description An issue exists in Damian WP Popups wp-popups-lite related to incorrectly configured access control security levels, allowing for missing authorization. The issue allows exploitation of access control.

Recommendations Update Damian WP Popups to a version later than 2.2.0.3.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2026-24616

Affected Products

Damian Wp Popups

PT-2026-4448 · WordPress · Damian Wp Popups

CVE-2026-24616

Weakness Enumeration

Related Identifiers

Affected Products

References · 5