Mikado Themes Justicia WordPress Theme Authorization Bypass Vulnerability Allowing Insecure Direct Object References

Vulnerability

A vulnerability allowing authorization bypass through user-controlled keys has been identified in the Mikado Themes WordPress theme 'Justicia', specifically in versions through 1.2. This issue arises from incorrectly configured access control security levels, potentially leading to insecure direct object references (IDOR).

Impact

Exploitation of this vulnerability could allow unauthorized users to access restricted objects or resources, bypassing normal authorization mechanisms. This could involve accessing sensitive files, folders, or database interactions that should be protected.

Added: Jan 22, 2026, 7:42 PM

Updated: Jan 22, 2026, 7:42 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

4.8

remediation

0.0

relevance

2.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

4.8

remediation

0.0

relevance

2.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mikado Themes Justicia WordPress Theme Authorization Bypass Vulnerability Allowing Insecure Direct Object References

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating