PT-2026-56315 · Pixelgrade · Backstage – Customizer Demo Access

Nabil Irawan

·

Published

2026-07-08

·

Updated

2026-07-08

·

CVE-2026-9842

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
The Backstage - Customizer Demo Access plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.4.2. This is due to the plugin assigning the manage options capability to the backstage customizer user demo role, which is more permissive than necessary for Customizer-only demo access. This makes it possible for unauthenticated attackers to navigate beyond the Customizer and update arbitrary WordPress options such as default role, leading to privilege escalation.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-9842

Affected Products

Backstage – Customizer Demo Access