PT-2026-6251 · WordPress · Wp Sync For Notion
Published
2026-02-03
·
Updated
2026-02-03
·
CVE-2026-25020
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
WP Sync for Notion versions through 1.7.0
Description
An issue exists in WP Sync for Notion where incorrectly configured access control security levels can be exploited, leading to a missing authorization condition.
Recommendations
Update WP Sync for Notion to a version later than 1.7.0.
Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wp Sync For Notion