Booktics Missing Authorization: Unsecured Access to Sensitive Data

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Booktics Missing Authorization: Unsecured Access to Sensitive Data

CVE-2026-39585

Summary

A security weakness in Booktics allows unauthorized access to sensitive data when access control is incorrectly configured. This affects versions of Booktics from unknown to 1.0.16. To protect your data, update to the latest version of Booktics or adjust your access control settings to ensure proper authorization.

Original title

Missing Authorization vulnerability in Arraytics Booktics booktics allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booktics: from n/a through <= 1.0.16.

Original description

Missing Authorization vulnerability in Arraytics Booktics booktics allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booktics: from n/a through <= 1.0.16.

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/booktics/vulnerability/wordpres...

Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 8 Apr 2026