MEDIUM
WP Chill
CVE published 2026-05-20
CVE-2026-27424
CVE-2026-27424 is a missing-authorization / broken-access-control issue reported for the WordPress Image Photo Gallery Final Tiles Grid plugin through version 3.6.11. The NVD record maps it to CWE-862 and assigns a CVSS 3.1 score of 4.3 (Medium), with a network-reachable, low-privilege attack path and limited confidentiality impact in the supplied vector. The source data points to a Patchstack advisory fo [truncated]