This issue affects Woffice: from n/a before 5.4.33.
Analysis and contextual insights are available on OpenCVE Cloud.
Vendor Solution
Update the WordPress Woffice theme to the latest available version (at least 5.4.33).
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 01 Jul 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 01 Jul 2026 09:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Missing Authorization vulnerability in WofficeIO Woffice allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Woffice: from n/a before 5.4.33. | |
| Title | WordPress Woffice theme < 5.4.33 - Broken Access Control vulnerability | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-07-01T10:22:34.470Z
Reserved: 2026-02-19T09:52:32.857Z
Link: CVE-2026-27435
Updated: 2026-07-01T10:22:31.570Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-01T13:00:15Z