CVE-2026-27329

Summary

Authorization Bypass Through User-Controlled Key vulnerability in YITH YITH WooCommerce Wishlist allows Exploiting Incorrectly Configured Access Control Security Levels.

This issue affects YITH WooCommerce Wishlist: from n/a through 4.12.0.

Affected Software

VendorProductVersion RangeStatus
YITHYITH WooCommerce Wishlistn/a <= 4.12.0affected

Weaknesses

  • CWE-639: CWE-639 Authorization Bypass Through User-Controlled Key

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References