CVE-2026-28038 — Missing Authorization vulnerability in Brainstorm Force Ultimate Addons for…

April 01, 2026 14:26 /HIGH

CVE Notify vulnerabilitycvedata-breach

Image via assets

🚨 CVE-2026-28038 Missing Authorization vulnerability in Brainstorm Force Ultimate Addons for WPBakery Page Builder allows Exploiting Incorrectly Configured Access Control…

https://patchstack.com/database/wordpress/plugin/ultimate_vc_addons/vulnerability/wordpress-ultimate-addons-for-wpbakery-page-builder-plugin-3-21-1-broken-access-control-vulnerability?_s_id=cve

What This Means For You

New vulnerability disclosed — verify if your stack is exposed.

Indicators of Compromise

ID	Type	Indicator
CVE-2026-28038	Auth Bypass	Brainstorm Force Ultimate Addons for WPBakery Page Builder - Missing Authorization vulnerability in Incorrectly Configured Access Control

Source & Attribution

Source Platform	Telegram
Channel	CVE Notify
Channel ID	1129491012
Message ID	157550
Published	April 01, 2026 at 14:26 UTC
Original Link	https://patchstack.com/database/wordpress/plugin/ultimate...

This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.

Believe this infringes your rights? Submit a takedown request.

Found this interesting? Follow us on LinkedIn to stay ahead.

Follow Shimi Cohen Follow Shimi's Cyber World