VYPR

CWE-269

Improper Privilege Management

ClassDraftLikelihood: Medium

Description

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-122 · CAPEC-233 · CAPEC-58

CVEs mapped to this weakness (1,039)

page 2 of 52
  • CVE-2026-31070CriMay 19, 2026
    risk 0.64cvss 9.8epss 0.00

    The LalanaChami Pharmacy Management System (commit 5c3d028) allows unauthenticated remote attackers to escalate privileges by self-assigning an administrative role during registration. The /api/user/signup endpoint fails to validate the role parameter in the request body

  • CVE-2025-13618CriMay 5, 2026
    risk 0.64cvss 9.8epss 0.00

    The Mentoring plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.2.8. This is due to the plugin not properly restricting the roles that users can register with in the mentoring_process_registration() function. This makes it…

  • CVE-2026-2631CriMar 11, 2026
    risk 0.64cvss 9.8epss 0.01

    The Datalogics Ecommerce Delivery WordPress plugin before 2.6.60 exposes an unauthenticated REST endpoint that allows any remote user to modify the option `datalogics_token` without verification. This token is subsequently used for authentication in a protected endpoint that…

  • CVE-2025-29165CriMar 5, 2026
    risk 0.64cvss 9.8epss 0.01

    An issue in D-Link DIR-1253 MESH V1.6.1684 allows an attacker to escalate privileges via the etc/shadow.sample component

  • CVE-2025-12981CriFeb 27, 2026
    risk 0.64cvss 9.8epss 0.01

    The Listee theme for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.1.6. This is due to a broken validation check in the bundled listee-core plugin's user registration function that fails to properly sanitize the user_role parameter. This…

  • CVE-2026-2782CriFeb 24, 2026
    risk 0.64cvss 9.8epss 0.00

    Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

  • CVE-2026-2780CriFeb 24, 2026
    risk 0.64cvss 9.8epss 0.00

    Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

  • CVE-2026-2777CriFeb 24, 2026
    risk 0.64cvss 9.8epss 0.00

    Privilege escalation in the Messaging System component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.

  • CVE-2026-26725CriFeb 20, 2026
    risk 0.64cvss 9.8epss 0.00

    An issue in edu Business Solutions Print Shop Pro WebDesk v.18.34 (fixed in 19.76) allows a remote attacker to escalate privileges via the AccessID parameter.

  • CVE-2025-13851CriFeb 19, 2026
    risk 0.64cvss 9.8epss 0.00

    The Buyent Classified plugin for WordPress (bundled with Buyent theme) is vulnerable to privilege escalation via user registration in all versions up to, and including, 1.0.7. This is due to the plugin not validating or restricting the user role during registration via the REST…

  • CVE-2025-13563CriFeb 19, 2026
    risk 0.64cvss 9.8epss 0.00

    The Lizza LMS Pro plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.3. This is due to the 'lizza_lms_pro_register_user_front_end' function not restricting what user roles a user can register with. This makes it possible for…

  • CVE-2025-12882CriFeb 19, 2026
    risk 0.64cvss 9.8epss 0.00

    The Clasifico Listing plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 2.0. This is due to the plugin allowing users who are registering new accounts to set their own role by supplying the 'listing_user_role' parameter. This makes it…

  • CVE-2025-8572CriFeb 14, 2026
    risk 0.64cvss 9.8epss 0.00

    The Truelysell Core plugin for WordPress is vulnerable to privilege escalation in versions less than, or equal to, 1.8.7. This is due to insufficient validation of the user_role parameter during user registration. This makes it possible for unauthenticated attackers to create…

  • CVE-2025-15027CriFeb 8, 2026
    risk 0.64cvss 9.8epss 0.00

    The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.6.03. This is due to the plugin allowing a user to update arbitrary user meta through the 'jay_login_register_ajax_create_final_user' function. This makes…

  • CVE-2025-15030CriFeb 2, 2026
    risk 0.64cvss 9.8epss 0.00

    The User Profile Builder WordPress plugin before 3.15.2 does not have a proper password reset process, allowing a few unauthenticated requests to reset the password of any user by knowing their username, such as administrator ones, and therefore gain access to their account

  • CVE-2025-14533CriJan 20, 2026
    risk 0.64cvss 9.8epss 0.01

    The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 0.9.2.1. This is due to the 'insert_user' function not restricting the roles with which a user can register. This makes it possible for…

  • CVE-2025-13619CriDec 20, 2025
    risk 0.64cvss 9.8epss 0.00

    The Flex Store Users plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.0. This is due to the 'fsUserHandle::signup' and the 'fsSellerRole::add_role_seller' functions not restricting what user roles a user can register with. This…

  • CVE-2025-13764CriDec 11, 2025
    risk 0.64cvss 9.8epss 0.00

    The WP CarDealer plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.16. This is due to the 'WP_CarDealer_User::process_register' function not restricting what user roles a user can register with. This makes it possible for…

  • CVE-2025-13542CriDec 2, 2025
    risk 0.64cvss 9.8epss 0.00

    The DesignThemes LMS plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.4. This is due to the 'dtlms_register_user_front_end' function not restricting what user roles a user can register with. This makes it possible for…

  • CVE-2025-13675CriNov 27, 2025
    risk 0.64cvss 9.8epss 0.00

    The Tiger theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 101.2.1. This is due to the 'paypal-submit.php' file not restricting what user roles a user can register with. This makes it possible for unauthenticated attackers to supply…