CVE-2026-39563

Received Received - Intake

Missing Authorization in Share This Image Plugin Allows Unauthorized Access

Publication date: 2026-04-08

Last updated on: 2026-04-29

Assigner: Patchstack

Description

Missing Authorization vulnerability in ILLID Share This Image share-this-image allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Share This Image: from n/a through <= 2.12.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-04-08

Last Modified

2026-04-29

Generated

2026-06-16

AI Q&A

2026-04-08

EPSS Evaluated

2026-06-14

NVD

CVE-2026-39563

EUVD

EUVD-2026-20207

Affected Vendors & Products

Vendor	Product	Version / Range
illid	share_this_image	to 2.12 (inc)

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-862	The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

Attack-Flow Graph

Executive Summary

This vulnerability is a Missing Authorization issue in the Share This Image plugin (share-this-image). It occurs due to incorrectly configured access control security levels, which means that the plugin does not properly verify whether a user has the necessary permissions to perform certain actions.

Impact Analysis

Because of the missing authorization checks, unauthorized users might be able to access or manipulate images or related functionality that they should not have permission to use. This can lead to unauthorized data exposure or modification.

Hi! I’m here to help you understand CVE-2026-39563. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2026-39563

Missing Authorization in Share This Image Plugin Allows Unauthorized Access

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart