CyberRota
← Ana sayfaya dön

CVE-2026-10753

LOW · CVSS 2.7 EPSS %0.17

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-24T07:16:26.063 · Çekilme zamanı: 2026-06-30T18:30:56.584727+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-10753
Severity
LOW
CVSS
2.7
EPSS
%0.17
WordPress

Orijinal NVD Açıklaması

The Site Kit by Google WordPress plugin before 1.176.0 does not properly restrict a REST API write endpoint to administrators, allowing lower-privileged users who have been granted dashboard sharing access (such as Editors) to modify a site-wide Site Kit by Google WordPress plugin before 1.176.0 setting that should only be modifiable by administrators.