Access Control Flaw in RadiusTheme Team Plugin by RadiusTheme
CVE-2026-25026

Currently unrated

Key Information:

Vendor

WordPress
Status
Team
Vendor
CVE Published:
25 March 2026

What is CVE-2026-25026?

A missing authorization vulnerability in the RadiusTheme Team plugin allows attackers to exploit incorrectly configured access control security levels. This flaw can enable unauthorized access to sensitive resources, potentially leading to data exposure or manipulation. It affects the Team plugin in versions from an undisclosed starting point up to 5.0.11.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Team <= n/a

References

https://patchstack.com/database/Wordpress/Plugin/tlp-team...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Doan Dinh Van | Patchstack Bug Bounty Program
JSON
.