Title: unauthorized access issue Last modified: January 15, 2026 --- # unauthorized access issue * Resolved [darinmartini](https://wordpress.org/support/users/darinmartini/) * (@darinmartini) * [4 months, 3 weeks ago](https://wordpress.org/support/topic/unauthorized-access-issue/) * Latest Update giving the following issue: * The CTX Feed plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 6.6.18. This makes it possible for unauthenticated attackers to perform an unauthorized action. * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Funauthorized-access-issue%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 4 replies - 1 through 4 (of 4 total) * Plugin Support [mansary](https://wordpress.org/support/users/mansary/) * (@mansary) * [4 months, 3 weeks ago](https://wordpress.org/support/topic/unauthorized-access-issue/#post-18787867) * Dear [@darinmartini](https://wordpress.org/support/users/darinmartini/) * Thank you for bringing this to our attention and for sharing the report. * We take security matters very seriously. We are currently reviewing the reported issue regarding the missing capability check in CTX Feed versions up to 6.6.18, as referenced by Patchstack. Our development team has already started investigating the claim to verify the scope and impact of the reported behavior. * If the issue is confirmed, we will release a patched version as soon as possible and notify users immediately. We strongly encourage all users to keep the plugin updated and follow best security practices. * In the meantime, if you have specific details, proof of concept, or steps to reproduce the issue, we would greatly appreciate it if you could share them with us. This will help us address the matter more efficiently. * Thank you again for reporting this and helping us improve the security of CTX Feed. * Kind regards, * Thread Starter [darinmartini](https://wordpress.org/support/users/darinmartini/) * (@darinmartini) * [4 months, 3 weeks ago](https://wordpress.org/support/topic/unauthorized-access-issue/#post-18789391) * how long till it’s fixed? * Plugin Author [WebAppick](https://wordpress.org/support/users/wahid0003/) * (@wahid0003) * [4 months, 3 weeks ago](https://wordpress.org/support/topic/unauthorized-access-issue/#post-18789394) * We will release the patched version on next monday. Thanks for your patience. * Plugin Support [mansary](https://wordpress.org/support/users/mansary/) * (@mansary) * [4 months, 3 weeks ago](https://wordpress.org/support/topic/unauthorized-access-issue/#post-18790855) * Dear [@darinmartini](https://wordpress.org/support/users/darinmartini/) * A new version of CTX Feed has been released that addresses the issue. Please update the plugin to the latest version to resolve the problem. * Thank you, Viewing 4 replies - 1 through 4 (of 4 total) You must be [logged in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Funauthorized-access-issue%2F%3Foutput_format%3Dmd&locale=en_US) to reply to this topic. * ![](https://ps.w.org/webappick-product-feed-for-woocommerce/assets/icon-256x256. gif?rev=3346213) * [Product Feed Manager for WooCommerce – CTX Feed – Support 220+ Shopping & Social Channels](https://wordpress.org/plugins/webappick-product-feed-for-woocommerce/) * [Frequently Asked Questions](https://wordpress.org/plugins/webappick-product-feed-for-woocommerce/#faq) * [Support Threads](https://wordpress.org/support/plugin/webappick-product-feed-for-woocommerce/) * [Active Topics](https://wordpress.org/support/plugin/webappick-product-feed-for-woocommerce/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/webappick-product-feed-for-woocommerce/unresolved/) * [Reviews](https://wordpress.org/support/plugin/webappick-product-feed-for-woocommerce/reviews/) * 4 replies * 3 participants * Last reply from: [mansary](https://wordpress.org/support/users/mansary/) * Last activity: [4 months, 3 weeks ago](https://wordpress.org/support/topic/unauthorized-access-issue/#post-18790855) * Status: resolved