CVE-2026-1640 — The Taskbuilder – WordPress Project Management & Task Management plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 5.0.2. This is due to missing auth — CVE Database · The Intelligence Room