{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23548", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "state": "PUBLISHED", "assignerShortName": "Patchstack", "dateReserved": "2026-01-14T08:36:07.869Z", "datePublished": "2026-02-19T08:26:49.731Z", "dateUpdated": "2026-04-28T16:14:46.769Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected", "packageName": "directorypress", "product": "DirectoryPress", "vendor": "Designinvento", "versions": [{"changes": [{"at": "3.6.26", "status": "unaffected"}], "lessThanOrEqual": "3.6.25", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "daroo | Patchstack Bug Bounty Program"}], "datePublic": "2026-04-22T14:20:40.663Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Missing Authorization vulnerability in Designinvento DirectoryPress directorypress allows Exploiting Incorrectly Configured Access Control Security Levels.<p>This issue affects DirectoryPress: from n/a through <= 3.6.25.</p>"}], "value": "Missing Authorization vulnerability in Designinvento DirectoryPress directorypress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DirectoryPress: from n/a through <= 3.6.25."}], "impacts": [{"capecId": "CAPEC-180", "descriptions": [{"lang": "en", "value": "Exploiting Incorrectly Configured Access Control Security Levels"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-862", "description": "Missing Authorization", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-28T16:14:46.769Z"}, "references": [{"tags": ["vdb-entry"], "url": "https://patchstack.com/database/Wordpress/Plugin/directorypress/vulnerability/wordpress-directorypress-plugin-3-6-25-broken-access-control-vulnerability?_s_id=cve"}], "title": "WordPress DirectoryPress plugin <= 3.6.25 - Broken Access Control vulnerability"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-26T18:47:22.859732Z", "id": "CVE-2026-23548", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-28T15:43:39.636Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-23548", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-26T18:47:22.859732Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T18:47:35.847Z"}}], "cna": {"title": "WordPress DirectoryPress plugin <= 3.6.25 - Broken Access Control vulnerability", "credits": [{"lang": "en", "type": "finder", "value": "daroo | Patchstack Bug Bounty Program"}], "impacts": [{"capecId": "CAPEC-180", "descriptions": [{"lang": "en", "value": "Exploiting Incorrectly Configured Access Control Security Levels"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Designinvento", "product": "DirectoryPress", "versions": [{"status": "affected", "changes": [{"at": "3.6.26", "status": "unaffected"}], "version": "0", "versionType": "custom", "lessThanOrEqual": "3.6.25"}], "packageName": "directorypress", "collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected"}], "datePublic": "2026-04-22T14:20:40.663Z", "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/directorypress/vulnerability/wordpress-directorypress-plugin-3-6-25-broken-access-control-vulnerability?_s_id=cve", "tags": ["vdb-entry"]}], "descriptions": [{"lang": "en", "value": "Missing Authorization vulnerability in Designinvento DirectoryPress directorypress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DirectoryPress: from n/a through <= 3.6.25.", "supportingMedia": [{"type": "text/html", "value": "Missing Authorization vulnerability in Designinvento DirectoryPress directorypress allows Exploiting Incorrectly Configured Access Control Security Levels.<p>This issue affects DirectoryPress: from n/a through <= 3.6.25.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "Missing Authorization"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-23T14:14:03.951Z"}}}, "cveMetadata": {"cveId": "CVE-2026-23548", "state": "PUBLISHED", "dateUpdated": "2026-04-28T15:43:39.636Z", "dateReserved": "2026-01-14T08:36:07.869Z", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "datePublished": "2026-02-19T08:26:49.731Z", "assignerShortName": "Patchstack"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Missing Authorization vulnerability in Designinvento DirectoryPress directorypress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DirectoryPress: from n/a through <= 3.6.25."}, {"lang": "es", "value": "Vulnerabilidad de falta de autorizaci\u00f3n en designinvento DirectoryPress directorypress permite explotar niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta a DirectoryPress: desde n/a hasta &lt;= 3.6.25."}], "id": "CVE-2026-23548", "lastModified": "2026-04-28T16:16:06.783", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "audit@patchstack.com", "type": "Secondary"}]}, "published": "2026-02-19T09:16:12.787", "references": [{"source": "audit@patchstack.com", "url": "https://patchstack.com/database/Wordpress/Plugin/directorypress/vulnerability/wordpress-directorypress-plugin-3-6-25-broken-access-control-vulnerability?_s_id=cve"}], "sourceIdentifier": "audit@patchstack.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "audit@patchstack.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,3.6.25]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "DirectoryPress", "source": "cna", "vendor": "designinvento"}, "product": "directorypress", "vendor": "designinvento"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "wordpress", "vendor": "wordpress"}], "analysis": {"en": {"generated_at": "2026-04-17T18:12:50.594500+00:00", "value": {"mitigation_remediation": ["Update the DirectoryPress plugin to the latest version, which includes the missing authorization fix.", "If an update cannot be applied immediately, uninstall or deactivate the plugin to eliminate the exposed access paths.", "Audit and tighten WordPress role capabilities to ensure that only privileged users can interact with the DirectoryPress administrative interface.", "Optionally monitor site logs for anomalous access to DirectoryPress endpoints to detect potential exploitation attempts."], "summary": {"action": "Patch plugin", "impact": "Unauthorized access via broken access control"}, "threat_synthesis": {"affected_systems": "WordPress installations that have the Designinvento DirectoryPress plugin version 3.6.25 or earlier. The vulnerability applies to all users, regardless of role, that can interact with the plugin\u2019s pages or API endpoints because no authorization is enforced.", "description_and_impact": "The vulnerability is a missing authorization in the Designinvento DirectoryPress plugin, classified as a broken access control issue. Based on the description, it is inferred that an attacker that can reach the plugin\u2019s web interface can exploit incorrectly configured access levels to bypass role checks and retrieve or manipulate protected data. The weakness is specifically identified as CWE\u2011862, and the CVSS score of 5.3 reflects a moderate potential impact on confidentiality and integrity for affected WordPress sites.", "risk_and_exploitability": "With a CVSS score of 5.3 the vulnerability is considered moderate, while the EPSS score of less than 1 % indicates a low likelihood of exploitation under current conditions. The vulnerability is not listed in the CISA KEV catalog, suggesting it has not yet been widely leveraged in incidents. Based on the description, it is inferred that attackers would need network access to the WordPress site or the ability to authenticate as a user to send requests to the plugin\u2019s restricted endpoints. It is also inferred that, once the missing authorization check is exploitable, attackers could read or modify plugin data, but would not be able to remotely execute code or gain full system control."}}}}, "created": "2026-02-20T10:11:17.899410+00:00", "updated": "2026-04-17T18:15:26.782549+00:00", "vendors": ["designinvento", "designinvento$PRODUCT$directorypress", "wordpress", "wordpress$PRODUCT$wordpress"]}