Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Syed Balkhi | Intranet & Private Site – All-In-One Intranet | unaffected |
|
No data.
No data.
No data available yet.
Vendor Solution
Update the WordPress Intranet & Private Site – All-In-One Intranet Plugin to the latest available version (at least 1.9.0).
Tracking
Sign in to view the affected projects.
No advisories yet.
Fri, 26 Jun 2026 21:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Fri, 26 Jun 2026 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Broken Access Control in Intranet & Private Site – All-In-One Intranet <= 1.8.1 versions. | |
| Title | WordPress Intranet & Private Site – All-In-One Intranet plugin <= 1.8.1 - Broken Access Control vulnerability | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-26T20:19:01.084Z
Reserved: 2026-06-16T09:21:57.269Z
Link: CVE-2026-54837
Vulnrichment
Updated: 2026-06-26T20:18:56.041Z
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-26T18:00:06Z