PatchSiren

Sparkle WP CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM Sparkle WP CVE published 2026-06-11

CVE-2023-32959

A Missing Authorization vulnerability was discovered in the MetroStore theme for WordPress, affecting versions from n/a through 1.3.2. This vulnerability, tracked as CVE-2023-32959, has a CVSS score of 4.3 and is classified as MEDIUM severity. The issue allows for Exploiting Incorrectly Configured Access Control Security Levels.