<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>WP Business Intelligence Lite Plugin (&lt;= 3.2.0) - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/products/wp-business-intelligence-lite-plugin--3.2.0/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Fri, 10 Jul 2026 05:22:43 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/products/wp-business-intelligence-lite-plugin--3.2.0/feed.xml" rel="self" type="application/rss+xml"/><item><title>CVE-2026-15293 - WP Business Intelligence Lite Plugin Authorization Bypass Leading to Privilege Escalation</title><link>https://feed.craftedsignal.io/briefs/2026-07-wp-business-intelligence-lite-auth-bypass/</link><pubDate>Fri, 10 Jul 2026 05:22:43 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-wp-business-intelligence-lite-auth-bypass/</guid><description>The WP Business Intelligence Lite plugin for WordPress contains an authorization bypass vulnerability (CVE-2026-15293) affecting all versions up to and including 3.2.0, allowing authenticated attackers with Subscriber-level access or higher to modify stored SQL queries which can lead to arbitrary SQL execution and privilege escalation when an administrator views the modified query.</description><content:encoded><![CDATA[<p>A critical authorization bypass vulnerability, identified as CVE-2026-15293, exists within the WP Business Intelligence Lite plugin for WordPress, impacting all versions up to and including 3.2.0. This flaw stems from inadequate authorization checks, enabling authenticated attackers with as little as Subscriber-level privileges to modify existing stored SQL queries within the plugin. The core issue arises when an administrator subsequently accesses or views these maliciously altered queries, triggering the execution of arbitrary SQL commands under the administrator's context. This ultimately leads to privilege escalation, allowing the attacker to potentially gain full control over the WordPress database and underlying system. The vulnerability poses a significant risk to WordPress sites utilizing this plugin, potentially leading to data compromise, website defacement, or complete system takeover.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>An authenticated attacker gains access to a WordPress instance with at least Subscriber-level privileges.</li>
<li>The attacker leverages the authorization bypass vulnerability within the WP Business Intelligence Lite plugin to gain unauthorized access to functionality designed to modify stored SQL queries.</li>
<li>The attacker crafts and injects malicious SQL commands into an existing stored query within the plugin's configuration.</li>
<li>The attacker waits for an administrator to log into the WordPress dashboard and navigate to a section that displays or executes the compromised stored SQL query.</li>
<li>When the administrator views the modified query, the vulnerable plugin executes the injected malicious SQL commands within the context of the administrator's high-privilege session.</li>
<li>The arbitrary SQL execution grants the attacker elevated privileges, potentially leading to full control over the WordPress database and the ability to perform actions such as creating new administrative users or exfiltrating sensitive data.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>The successful exploitation of CVE-2026-15293 grants attackers arbitrary SQL execution capabilities, leading to privilege escalation on the affected WordPress site. This can result in severe consequences, including full compromise of the database, creation of unauthorized administrator accounts, exfiltration of sensitive user data, defacement of the website, or injection of malicious code. Organizations running the vulnerable WP Business Intelligence Lite plugin risk significant data breaches, reputational damage, and potential regulatory fines due to the elevated access gained by attackers.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Immediately update the WP Business Intelligence Lite plugin to a version patched against CVE-2026-15293. If an update is not available, disable or uninstall the plugin.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>wordpress</category><category>plugin-vulnerability</category><category>authorization-bypass</category><category>privilege-escalation</category><category>web-application</category><category>cve</category></item></channel></rss>