Back to VulnFeed / CVE-2026-9015
root@hackertop:~/vulnfeed/CVE-2026-9015#
CVE-2026-9015 MEDIUM CVE ⚠ Unpatched · Zero-day◉ PoC 公开 Lifecycle 4/7

equalizedigital Equalize Digital Accessibility Checker Plugin up to 1.42.0 on WordPress authorization

Equalize Digital Accessibility Checker Plugin 2026-05-28 Impact pending confirmation
LIFECYCLE
5.2 CVSS
Vulnerability Detail Mitigation Lifecycle CVSS Assessment
Vulnerability Description
A vulnerability was found in equalizedigital Equalize Digital Accessibility Checker Plugin up to 1.42.0 on WordPress (WordPress Plugin) and classified as critical. Affected by this issue is some unknown functionality. Upgrading to version 1.38.0 eliminates this vulnerability.
Root Cause Analysis
Using CWE to declare the problem leads to CWE-862. The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

Impact: Impacted is confidentiality, integrity, and availability.

Countermeasure: Upgrading to version 1.38.0 eliminates this vulnerability.
Validation (PoC/EXP) - Looking for Contributors
No public PoC yet

Public validation traces already exist. Community contributors can extend them with richer reproduction content.

Contribute Your PoC/EXP
Log in to contribute PoC/EXP content. Log in
Back to VulnFeed
CVE-2026-9015 · CVSS 5.2 · Active Threat