Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Toret Manager plugin for WordPress allows attackers to gain admin access
CVE-2026-0912
Summary
The Toret Manager plugin for WordPress is not secure. Attackers with Subscriber-level access can change important settings and gain administrative user access to a site. Update to the latest version of the plugin to fix this security risk.
Original title
The Toret Manager plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'trman_save_option' function...
Original description
The Toret Manager plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'trman_save_option' function and on the 'trman_save_option_items' in all versions up to, and including, 1.2.7. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.
nvd CVSS3.1
8.8
Vulnerability type
CWE-269
Improper Privilege Management
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026