CVE-2026-7655
Received Received - Intake

Privilege Escalation via Account Takeover in SureCart WordPress Plugin

Vulnerability report for CVE-2026-7655, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-11

Last updated on: 2026-07-11

Assigner: Wordfence

Description

The SureCart plugin for WordPress is vulnerable to privilege escalation via account takeover in versions up to, and including, 4.2.3. This is due to the plugin not properly validating a user's identity prior to updating their details like email during customer profile synchronization from webhook events. This makes it possible for unauthenticated attackers to change linked user's email addresses, including administrators if the administrator account is linked to a SureCart customer record, and leverage that to reset the user's password and gain access to their account if the customer ID is known.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-11
Last Modified
2026-07-11
Generated
2026-07-11
AI Q&A
2026-07-11
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
surecart surecart to 4.2.3 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-640 The product contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

The SureCart plugin for WordPress has a vulnerability that allows privilege escalation through account takeover in versions up to and including 4.2.3. This happens because the plugin does not properly verify a user's identity before updating their details, such as email addresses, during customer profile synchronization triggered by webhook events.

As a result, an unauthenticated attacker who knows a customer ID can change the linked user's email address, including those of administrators if their account is linked to a SureCart customer record. The attacker can then reset the user's password and gain access to their account.

Impact Analysis

This vulnerability can have severe impacts because it allows attackers to escalate privileges by taking over user accounts without authentication.

  • Attackers can change email addresses of users, including administrators.
  • Attackers can reset passwords and gain unauthorized access to user accounts.
  • Compromise of administrator accounts can lead to full control over the WordPress site.
  • This can result in data breaches, unauthorized changes, and potential disruption of services.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-7655. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart