Missing Authorization Issue in WPFunnels Mail Mint Plugin
CVE-2026-23541

Currently unrated

Key Information:

Vendor

WordPress
Status
Mail Mint
Vendor
CVE Published:
19 February 2026

What is CVE-2026-23541?

A missing authorization vulnerability in the WPFunnels Mail Mint plugin allows unauthorized access to certain functionalities due to insufficient access control measures. This impacts users of Mail Mint versions up to and including 1.19.4, potentially enabling malicious actors to exploit the system and gain access to restricted features.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Mail Mint <= n/a

References

https://patchstack.com/database/Wordpress/Plugin/mail-min...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Denver Jackson | Patchstack Bug Bounty Program
JSON
.