WordPress Plugin Vulnerabilities

Modular DS < 2.5.2 - Unauthenticated Privilege Escalation

Description

The plugin has a flawed logic when processing its API routes, allowing unauthenticated users to call them, which can lead to privilege escalation by using a specific route resulting in attackers being logged in as an admin

Proof of Concept

Affects Plugins

Plugin icon
modular-connector
Fixed in 2.5.2

References

CVE
CVE-2026-23550
URL
https://patchstack.com/database/wordpress/plugin/modular-connector/vulnerability/wordpress-modular-ds-monitor-update-and-backup-multiple-websites-plugin-2-5-1-privilege-escalation-vulnerability

Classification

Type
PRIVESC
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-269
CVSS
10.0 (critical)

Miscellaneous

Original Researcher
Teemu Saarentaus
Verified
Yes
WPVDB ID
3ccaa0fd-b11c-4f9f-bab5-644a53b11035

Timeline

Publicly Published
2026-01-14 (about 3 months ago)
Added
2026-01-14 (about 3 months ago)
Last Updated
2026-04-07 (about 13 days ago)

Other

Published
Title
Published
2025-05-19
Title
CouponXL <= 4.5.0 - Unauthenticated Privilege Escalation
Published
2023-11-23
Title
Salon booking system < 8.7 - Authenticated (Editor+) Privilege Escalation
Published
2025-07-23
Title
Wholesale Suite < 2.2.5 - Authenticated (Shop Manager+) Privilege Escalation
Published
2024-11-22
Title
WPGYM < 67.2.0 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation
Published
2023-11-21
Title
UserPro < 5.1.5 - Authenticated (Subscriber+) Privilege Escalation