CVE-2026-6895

EPSS 0.25%
Veröffentlicht 23.05.2026 04:27:17
Zuletzt bearbeitet 26.05.2026 18:55:38
Quelle security@wordfence.com
CVE-Watchlists
Login
Unerledigt
Login

Wishlist Member <= 3.30.1 - Missing Authorization to Authenticated (Subscriber+) API Secret Key Disclosure and Privilege Escalation via 'wlm3_export_settings' AJAX Action

The WishList Member plugin for WordPress is vulnerable to Missing Authorization leading to Sensitive Information Disclosure and Privilege Escalation in versions up to and including 3.30.1. This is due to the missing capability checks in the 'export_settings' function. This function returns the REST API Secret Key to the attacker in the AJAX JSON response. An attacker who obtains this key can authenticate to the WishList Member API, create a new membership level assigned the administrator WordPress role, and register an arbitrary administrator-level user account, resulting in complete site takeover.

Mögliche Gegenmaßnahme

Wishlist Member: Update to version 3.31.0, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

CNA 1 VulnDex Vulnerability Enrichment 3

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerWishlist Member

≫

Produkt Wishlist Member

Default Statusunaffected

Version <= 3.30.1

Version 0

Status affected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Wishlist Member

Version *-3.30.1

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.25%	0.158

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@wordfence.com	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

https://wishlistmember.com/

https://www.wordfence.com/threat-intel/vulnerabilities/id/5b313e3d-61e0-496e-af3b-155666fae059?source=cve

https://www.wordfence.com/threat-intel/vulnerabilities/id/5b313e3d-61e0-496e-af3b-155666fae059

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-6895

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-6895

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-6895

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-6895