CVE-2026-32520

Published: Mar 25, 2026 Last Modified: Mar 25, 2026

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

Incorrect Privilege Assignment vulnerability in Andrew Munro / AffiliateWP RewardsWP rewardswp allows Privilege Escalation.This issue affects RewardsWP: from n/a through <= 1.0.4.

266

Incorrect Privilege Assignment

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control

Potential Impacts:

Gain Privileges Or Assume Identity

Applicable Platforms

All platforms may be affected

View CWE Details

https://patchstack.com/database/Wordpress/Plugin/rewardswp/…

https://patchstack.com/database/Wordpress/Plugin/rewardswp/vulnerability/wordpr…

CVE-2026-32520

Description

Incorrect Privilege Assignment

Common Consequences

Applicable Platforms

Iscriviti alla newsletter