{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-24541", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "state": "PUBLISHED", "assignerShortName": "Patchstack", "dateReserved": "2026-01-23T12:31:46.853Z", "datePublished": "2026-01-23T14:28:52.011Z", "dateUpdated": "2026-04-28T16:14:48.874Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected", "packageName": "download-after-email", "product": "Download After Email", "vendor": "mkscripts", "versions": [{"changes": [{"at": "2.1.10", "status": "unaffected"}], "lessThanOrEqual": "2.1.9", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Nabil Irawan | Patchstack Bug Bounty Program"}], "datePublic": "2026-04-22T14:20:57.172Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows Exploiting Incorrectly Configured Access Control Security Levels.<p>This issue affects Download After Email: from n/a through <= 2.1.9.</p>"}], "value": "Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download After Email: from n/a through <= 2.1.9."}], "impacts": [{"capecId": "CAPEC-180", "descriptions": [{"lang": "en", "value": "Exploiting Incorrectly Configured Access Control Security Levels"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-862", "description": "Missing Authorization", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-28T16:14:48.874Z"}, "references": [{"tags": ["vdb-entry"], "url": "https://patchstack.com/database/Wordpress/Plugin/download-after-email/vulnerability/wordpress-download-after-email-plugin-2-1-9-broken-access-control-vulnerability?_s_id=cve"}], "title": "WordPress Download After Email plugin <= 2.1.9 - Broken Access Control vulnerability"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-28T14:17:56.070068Z", "id": "CVE-2026-24541", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-28T14:17:58.833Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-24541", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-28T14:17:56.070068Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-27T16:55:30.715Z"}}], "cna": {"title": "WordPress Download After Email plugin <= 2.1.9 - Broken Access Control vulnerability", "credits": [{"lang": "en", "type": "finder", "value": "Nabil Irawan | Patchstack Bug Bounty Program"}], "impacts": [{"capecId": "CAPEC-180", "descriptions": [{"lang": "en", "value": "Exploiting Incorrectly Configured Access Control Security Levels"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "mkscripts", "product": "Download After Email", "versions": [{"status": "affected", "changes": [{"at": "2.1.10", "status": "unaffected"}], "version": "0", "versionType": "custom", "lessThanOrEqual": "2.1.9"}], "packageName": "download-after-email", "collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected"}], "datePublic": "2026-04-22T14:20:57.172Z", "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/download-after-email/vulnerability/wordpress-download-after-email-plugin-2-1-9-broken-access-control-vulnerability?_s_id=cve", "tags": ["vdb-entry"]}], "descriptions": [{"lang": "en", "value": "Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download After Email: from n/a through <= 2.1.9.", "supportingMedia": [{"type": "text/html", "value": "Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows Exploiting Incorrectly Configured Access Control Security Levels.<p>This issue affects Download After Email: from n/a through <= 2.1.9.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "Missing Authorization"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-23T14:14:05.721Z"}}}, "cveMetadata": {"cveId": "CVE-2026-24541", "state": "PUBLISHED", "dateUpdated": "2026-04-28T14:17:58.833Z", "dateReserved": "2026-01-23T12:31:46.853Z", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "datePublished": "2026-01-23T14:28:52.011Z", "assignerShortName": "Patchstack"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download After Email: from n/a through <= 2.1.9."}, {"lang": "es", "value": "Vulnerabilidad de Autorizaci\u00f3n Faltante en mkscripts Download After Email download-after-email permite explotar niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta a Download After Email: desde n/a hasta &lt;= 2.1.9."}], "id": "CVE-2026-24541", "lastModified": "2026-04-28T15:16:11.980", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "audit@patchstack.com", "type": "Secondary"}]}, "published": "2026-01-23T15:16:10.350", "references": [{"source": "audit@patchstack.com", "url": "https://patchstack.com/database/Wordpress/Plugin/download-after-email/vulnerability/wordpress-download-after-email-plugin-2-1-9-broken-access-control-vulnerability?_s_id=cve"}], "sourceIdentifier": "audit@patchstack.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "audit@patchstack.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-16T01:48:57.664628+00:00", "value": {"mitigation_remediation": ["Upgrade the Download After Email plugin to the latest version (greater than 2.1.9).", "Configure the plugin to restrict download access to authenticated users only and verify user capabilities before serving files.", "Disable the plugin or replace it with an alternative that enforces proper authorization if the functionality is no longer required."], "summary": {"action": "Apply Patch", "impact": "Unauthorized Access to Downloads"}, "threat_synthesis": {"affected_systems": "The affected system is the WordPress plugin Download After Email released by mkscripts. Versions from the earliest release through 2.1.9 are impacted. Users who have not upgraded beyond 2.1.9 are therefore exposed.", "description_and_impact": "The vulnerability resides in the mkscripts Download After Email WordPress plugin version 2.1.9 and earlier, where the plugin fails to enforce proper authorization checks. As a result, authenticated and unauthenticated users can request and obtain downloadable content without restriction, effectively bypassing the intended access control policy. This flaw can expose confidential files or proprietary material that should otherwise be protected by user permissions or download limits, adversely affecting confidentiality and potentially leading to further exploitation within the site.", "risk_and_exploitability": "The CVSS score of 5.3 indicates a medium severity that includes potential for unauthorized data disclosure. The EPSS score is less than 1%, showing a very low likelihood of exploitation at any given moment. This vulnerability is not listed in the CISA KEV catalog, suggesting limited public exploitation. It is inferred that the attack path involves an HTTP request to the plugin\u2019s download endpoint, which does not verify user identity or role. While the lower EPSS lowers immediate risk, the presence of missing authorization warrants monitoring and timely remediation."}}}}, "created": "2026-01-26T11:52:42.545089+00:00", "updated": "2026-04-16T02:00:12.322062+00:00", "vendors": ["mkscripts", "mkscripts$PRODUCT$download_after_email", "wordpress", "wordpress$PRODUCT$wordpress"]}