CVE-2026-22459

NONE EPSS 0.05%

Mar 05, 2026

Updated Mar 05, 2026

WordPress

Parameter	Value
Type	CWE-862 (Missing Authorization)
Vendor	WordPress
Public PoC	No

Missing Authorization vulnerability in Blend Media WordPress CTA easy-sticky-sidebar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress CTA: from n/a through <= 1.7.4.

Weakness Type (CWE)

CWE-862 Missing Authorization

References 1

https://patchstack.com/database/Wordpress/Plugin/easy-sticky-sidebar/vulnerabil…

audit@patchstack.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-6439

WordPress

4.4

CVE-2026-6451

WordPress

4.3

CVE-2026-40308

WordPress

8.8

CVE-2026-3830

Unknown

None

CVE-2026-5809

WordPress

7.1

CVE Details

CVE ID

CVE-2026-22459

Published Date

Mar 05, 2026

Vendor

WordPress

Severity

NONE

Exploit Prediction (EPSS)

Probability of Exploit 0.05%

Likelihood of exploitation in next 30 days

Percentile: 17.0th percentile (higher than 17.0% of all CVEs)

Standard patching cycle

Impact

Minimal impact

Source

View Advisory

Menu

CVE-2026-22459

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-6439

CVE-2026-6451

CVE-2026-40308

CVE-2026-3830

CVE-2026-5809

CVE Details

Editor's Choice

Menu

CVE-2026-22459

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-6439

CVE-2026-6451

CVE-2026-40308

CVE-2026-3830

CVE-2026-5809

CVE Details

Editor's Choice

Stay informed on cybersecurity