PT-2026-56315 · Pixelgrade · Backstage – Customizer Demo Access
Nabil Irawan
·
Published
2026-07-08
·
Updated
2026-07-08
·
CVE-2026-9842
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
The Backstage - Customizer Demo Access plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.4.2. This is due to the plugin assigning the
manage options capability to the backstage customizer user demo role, which is more permissive than necessary for Customizer-only demo access. This makes it possible for unauthenticated attackers to navigate beyond the Customizer and update arbitrary WordPress options such as default role, leading to privilege escalation.Fix
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Backstage – Customizer Demo Access