HIGH
MainWP
CVE published 2026-06-25
CVE-2026-27366
CVE-2026-27366 is a high-severity vulnerability in the MainWP Child plugin versions <= 6.1.1. It allows unauthenticated broken access control, potentially enabling attackers to access sensitive areas of the website without proper authentication. The vulnerability has a CVSS score of 7.5 and is considered HIGH severity. The CVE was published on June 25, 2026, and last modified on June 29, 2026. The vendor [truncated]