MEDIUM
equalizedigital
CVE published 2026-05-28
CVE-2026-9015
The Equalize Digital Accessibility Checker plugin for WordPress contains an authorization bypass vulnerability affecting versions up to and including 1.42.0. The flaw allows authenticated attackers with subscriber-level access or higher to modify accessibility issue metadata—including ignore state, ignore reason, and ignore comments—without proper authorization verification. When the largeBatch=true param [truncated]