Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| ThemeGrill | User Registration Stripe | unaffected |
|
No data.
No data.
No data available yet.
Vendor Solution
Update the WordPress User Registration Stripe Plugin to the latest available version (at least 1.3.15).
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 17 Jun 2026 13:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 17 Jun 2026 11:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Broken Access Control in User Registration Stripe <= 1.3.14 versions. | |
| Title | WordPress User Registration Stripe plugin <= 1.3.14 - Broken Access Control vulnerability | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-17T12:32:36.031Z
Reserved: 2026-04-15T09:19:20.453Z
Link: CVE-2026-40726
Vulnrichment
Updated: 2026-06-17T12:32:32.433Z
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
No data.
-
CWE-862
Missing Authorization