Skip to main content

Royal MCP CVE-2026-10750

| EUVDEUVD-2026-40914 HIGH
2026-07-01 WPScan GHSA-mggr-4wrj-4f4g
8.1
CVSS 3.1 · Vendor: WPScan
Share

Severity by source

Vendor (WPScan) PRIMARY
8.1 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
vuln.today AI
8.1 HIGH

Network-reachable MCP tools abusable by any authenticated low-priv (Subscriber) account, so AV:N/AC:L/PR:L/UI:N; high confidentiality and integrity but no direct availability impact.

3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (WPScan).

CVSS VectorVendor: WPScan

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Lifecycle Timeline

5
Analysis Generated
Jul 01, 2026 - 11:22 vuln.today
CVSS changed
Jul 01, 2026 - 11:22 NVD
8.1 (None) 8.1 (HIGH)
Patch available
Jul 01, 2026 - 08:01 EUVD
CVE Published
Jul 01, 2026 - 06:00 cve.org
HIGH 8.1
CVE Published
Jul 01, 2026 - 06:00 cve.org
UNKNOWN (no severity yet)

DescriptionCVE.org

The Royal MCP WordPress plugin before 1.4.26 does not perform capability checks on the majority of its MCP tools after token authentication, allowing authenticated users with a low-privileged role such as Subscriber to read private content, enumerate all users and their roles, and create, modify, or delete content owned by other users.

AnalysisAI

Broken access control in the Royal MCP WordPress plugin before 1.4.26 lets any authenticated low-privileged user (e.g. Subscriber) invoke privileged MCP tools that skip capability checks after token authentication, exposing private content, full user/role enumeration, and create/modify/delete operations on other users' content. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain low-privileged WordPress account
Delivery
Authenticate to MCP token endpoint
Exploit
Invoke MCP tool bypassing capability check
Execution
Enumerate users and read private content
Impact
Modify or delete others' content

Vulnerability AssessmentAI

Exploitation Exploitation requires an authenticated, token-authenticated MCP session tied to a valid WordPress account of any role, including the lowest-privileged Subscriber (per CVSS PR:L). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Signals are largely consistent and point to a genuine priority for sites running this plugin. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker registers or obtains a Subscriber account on a WordPress site running Royal MCP < 1.4.26 and authenticates to the MCP interface with a token. Because capability checks are missing, they invoke MCP tools to dump all usernames and roles, read private/draft posts, and delete or tamper with other users' content - all without any admin privileges. …
Remediation Vendor-released patch: upgrade the Royal MCP plugin to version 1.4.26 or later, which restores capability checks on the affected MCP tools; this is the primary and complete fix. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: identify all WordPress installations using Royal MCP plugin and document current versions; assess exposure to low-privileged users (subscribers, contributors). …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-10750 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy