WordPress Plugin Vulnerabilities

UpdraftPlus < 1.26.5 - Unauthenticated Authentication Bypass via UpdraftCentral udrpc

Description

The plugin does not properly validate the remote communications message format used by its UpdraftCentral feature, allowing the signature verification to be bypassed and the encryption key to be predicted. This makes it possible for unauthenticated attackers to forge arbitrary remote commands and execute them as the connected administrator, ultimately leading to remote code execution.

Affects Plugins

Plugin icon
updraftplus
Fixed in 1.26.5

References

CVE
CVE-2026-10795
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/e901c2a0-2477-4b9a-8483-6002419e0a2f
URL
https://teamupdraft.com/blog/important-security-update-for-updraftplus-and-updraftcentral-users/

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287
CVSS
8.1 (high)

Miscellaneous

Original Researcher
vtim
Verified
No
WPVDB ID
68addf8c-9ea6-4b62-9f85-e95350b3992e

Timeline

Publicly Published
2026-06-10 (about 3 days ago)
Added
2026-06-10 (about 3 days ago)
Last Updated
2026-06-12 (about 20 hours ago)

Other

Published
Title
Published
2024-12-03
Title
Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Social Sites Login < 1.8 - Authentication Bypass via WordPress.com OAuth provider
Published
2025-04-30
Title
Digits < 8.4.6.1 - Auth Bypass via OTP Bruteforcing
Published
2025-03-13
Title
WP JobHunt <= 7.1 - Authentication Bypass to Candidate
Published
2014-08-01
Title
Contact Form 7 <= 3.7.1 - CAPTCHA Bypass
Published
2025-10-15
Title
Ace User Management <= 2.0.3 - Subscriber+ Authentication Bypass via Password Rest