CVE-2026-4314

Name of the Vulnerable Software and Affected Versions The Ultimate WordPress Toolkit – WP Extended versions prior to 3.2.4

Description The 'The Ultimate WordPress Toolkit – WP Extended' plugin for WordPress is susceptible to a privilege escalation issue. This is caused by an insecure strpos() check within the isDashboardOrProfileRequest() method against the $ SERVER['REQUEST URI'] variable, used to determine if a request targets the dashboard or profile page. The grantVirtualCaps() function, which is connected to the user has cap filter, grants elevated capabilities, including manage options, when this check returns true. Authenticated attackers with Subscriber-level access or higher can exploit this by adding a crafted query parameter to any admin URL, enabling them to update arbitrary WordPress options and create new Administrator accounts.

Recommendations Update 'The Ultimate WordPress Toolkit – WP Extended' to version 3.2.4 or later.