CVE-2026-7467

Name of the Vulnerable Software and Affected Versions Read More & Accordion versions prior to 3.5.8

Description The plugin is subject to privilege escalation because the RadMoreAjax::importData() function fails to restrict which database tables can be written to during import and does not properly validate imported data. Authenticated attackers with permissions granted via the plugin's role settings can insert arbitrary rows into the wp users and wp usermeta tables, specifically targeting the wp capabilities field. This allows the creation of a new administrator account to gain full site access.

Recommendations Update to a version later than 3.5.7. As a temporary workaround, restrict the plugin's role settings to prevent unauthorized users from accessing the import functionality.