PatchSiren

Roxnor CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM Roxnor CVE published 2026-07-13

CVE-2026-57406

A Missing Authorization vulnerability in Roxnor FundEngine wp-fundraising-donation allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects FundEngine: from n/a through <= 1.7.6. The vulnerability has a CVSS score of 6.5 and is classified as MEDIUM severity. Users of FundEngine wp-fundraising-donation plugin for WordPress should verify their installation and update to a [truncated]