Missing Authorization in EchoPlugins Knowledge Base for Documentation & FAQs
CVE-2026-25402

Currently unrated

Key Information:

Vendor

WordPress
Status
Knowledge Base For Documentation, Faqs With Ai Assistance
Vendor
CVE Published:
19 February 2026

What is CVE-2026-25402?

A missing authorization vulnerability has been identified in the EchoPlugins Knowledge Base for Documentation, FAQs with AI Assistance. This security issue arises due to incorrectly configured access control security levels, allowing unauthorized access to sensitive information. The flaw affects versions from n/a through 16.011.0, posing significant risks to user data and privacy. Organizations using this plugin should prioritize updating to the latest secured version to mitigate the risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Knowledge Base for Documentation, FAQs with AI Assistance <= n/a

References

https://patchstack.com/database/Wordpress/Plugin/echo-kno...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Nabil Irawan | Patchstack Bug Bounty Program
JSON
.