Vulners
Lucene search
WordPress Melapress Role Editor plugin <= 1.1.1 - Improper Authorization to Authenticated (Subscriber+) Privilege Escalation via Secondary Role Assignment vulnerability
🗓️ 23 Jan 2026 08:57:44Reported by Sarawut Poolkhet (MisterHelloz)Type 
patchstack🔗 patchstack.com👁 10 Views
| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
 | CVE-2025-14866 | 23 Jan 202612:26 | – | attackerkb |
 | CVE-2025-14866 | 23 Jan 202613:44 | – | circl |
 | WordPress plugin Melapress Role Editor has a security vulnerability | 23 Jan 202600:00 | – | cnnvd |
 | CVE-2025-14866 | 23 Jan 202612:26 | – | cve |
 | CVE-2025-14866 Melapress Role Editor <= 1.1.1 - Improper Authorization to Authenticated (Subscriber+) Privilege Escalation via Secondary Role Assignment | 23 Jan 202612:26 | – | cvelist |
 | EUVD-2026-4409 | 23 Jan 202612:26 | – | euvd |
 | CVE-2025-14866 | 23 Jan 202613:15 | – | nvd |
 | PT-2026-4351 | 23 Jan 202600:00 | – | ptsecurity |
 | CVE-2025-14866 | 24 Jan 202615:17 | – | redhatcve |
 | CVE-2025-14866 Melapress Role Editor <= 1.1.1 - Improper Authorization to Authenticated (Subscriber+) Privilege Escalation via Secondary Role Assignment | 23 Jan 202612:26 | – | vulnrichment |
10
Node
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
23 Jan 2026 08:57Current
5.5Medium risk
Vulners AI Score5.5
CVSS 3.18.8
EPSS0.00365
SSVC