MEDIUM
Lucian Apostol
CVE published 2026-05-25
CVE-2026-24592
A Missing Authorization vulnerability (CWE-862) in the Auto Affiliate Links WordPress plugin allows exploitation of incorrectly configured access control security levels. The vulnerability affects versions from n/a through 6.8.8.3. The issue was published on 2026-05-25 and last modified on 2026-05-26. The NVD currently lists this CVE with a status of 'Deferred'. No known exploitation in the wild or ransom [truncated]