CVE-2026-35488 | TandoorRecipes recipes up to 2.6.3 CustomIsShared.has_object_permission routine

Inserito da Angelo Barbosa | Apr 7, 2026 | CVE

A vulnerability, which was classified as problematic, was found in TandoorRecipes recipes up to 2.6.3. This vulnerability affects the function CustomIsShared.has_object_permission. Executing a manipulation can lead to exposed dangerous routine.

This vulnerability appears as CVE-2026-35488. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.

CVE-2026-35488 | TandoorRecipes recipes up to 2.6.3 CustomIsShared.has_object_permission routine

Post correlati

CVE-2025-15396 | Library Viewer Plugin up to 3.1.x on WordPress cross site scripting

CVE-2023-50470 | SeaCMS 12.8 admin_video.php action cross site scripting

CVE-2024-38492 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.7 PAM System Remote Code Execution

CVE-2024-11707 | My Auctions Allegro Plugin up to 3.6.17 on WordPress cross site scripting