How is CVE-2026-10586 exploited?

Network reachability (required): The vulnerable function is exposed over the network, so an attacker must be able to reach the WordPress application via HTTP/HTTPS. Authentication (required): An attacker must hold at least an Author-level WordPress account; any low-privilege account at that role or above is sufficient. Victim interaction (not-required): No victim interaction is needed; the attacker can trigger the SSRF directly without involving another user. Attack complexity (info): Attack complexity is low, meaning the exploit is reliable and requires no special timing, race conditions, or environmental preconditions.

What is the impact of CVE-2026-10586?

The attacker can cause the WordPress server to issue HTTP requests to internal network addresses, effectively using it as a proxy to probe otherwise unreachable services. Internal service responses can be read back by the attacker, exposing configuration data, credentials, or other sensitive information stored on internal endpoints. The attacker can send crafted requests that modify state on internal services, such as triggering actions via internal APIs or management endpoints that assume requests originate from a trusted host. In cloud-hosted environments, this commonly includes querying instance metadata endpoints (such as AWS IMDSv1) to retrieve cloud credentials scoped to the host.

Back to search

HIGHCVE-2026-10586Published 2026-06-04Modified 2026-06-04CNA Wordfence

CVE-2026-10586: Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns <= 6.1.3 - Authenticated (Author+) Server-Side Request Forgery

Q: What is CVE-2026-10586?

Server-Side Request Forgery (SSRF) affects the Gutenberg Essential Blocks plugin for WordPress, versions 6.1.3 and earlier, via the save_ai_generated_image() function. The vulnerability is reachable over the network and requires no authentication barrier beyond a standard Author-level WordPress account. Successful exploitation allows an attacker to send arbitrary web requests from the WordPress server to internal services, enabling both data retrieval and modification of internal resources. HarborGuard is tracking this advisory and will make a patched-image rebuild available the moment an upstream fix is published.

Q: Is CVE-2026-10586 patched?

Because no upstream fix version has been published for this CVE, HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available immediately once the plugin maintainer ships a remediated release. For customers who opt into auto-remediation, the rebuild, regression run, and PR against affected workloads will be triggered automatically at that point.

The Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 6.1.3 via the `save_ai_generated_image()` function. This makes it possible for authenticated attackers, with Author-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

CVSS v3.1: 7.2
Severity: HIGH
Fixed in: —
Affected Products: 1

HarborGuard Analysis

Synopsis

Server-Side Request Forgery (SSRF) affects the Gutenberg Essential Blocks plugin for WordPress, versions 6.1.3 and earlier, via the save_ai_generated_image() function. The vulnerability is reachable over the network and requires no authentication barrier beyond a standard Author-level WordPress account. Successful exploitation allows an attacker to send arbitrary web requests from the WordPress server to internal services, enabling both data retrieval and modification of internal resources. HarborGuard is tracking this advisory and will make a patched-image rebuild available the moment an upstream fix is published.

HarborGuard Coverage

Detection

Detection is available across every HarborGuard environment: the CVE is ingested from upstream feeds within minutes of publication and matched against customer images in registries and CI/CD pipelines, including custom-built WordPress images that bundle this plugin.

Available

Triage

HarborGuard scores this finding at CVSS 7.2 HIGH using the v3.1 vector from the record, and per-environment compliance policy weighting can escalate or suppress routing based on each organization's risk thresholds, with results delivered to the appropriate team inbox inside each customer org.

Available

Patch

Because no upstream fix version has been published for this CVE, HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available immediately once the plugin maintainer ships a remediated release. For customers who opt into auto-remediation, the rebuild, regression run, and PR against affected workloads will be triggered automatically at that point.

Pending upstream

Exploit Conditions

Network reachabilityRequired
The vulnerable function is exposed over the network, so an attacker must be able to reach the WordPress application via HTTP/HTTPS.
AuthenticationRequired
An attacker must hold at least an Author-level WordPress account; any low-privilege account at that role or above is sufficient.
Victim interactionNot required
No victim interaction is needed; the attacker can trigger the SSRF directly without involving another user.
Attack complexityDetail
Attack complexity is low, meaning the exploit is reliable and requires no special timing, race conditions, or environmental preconditions.

Blast Radius

The attacker can cause the WordPress server to issue HTTP requests to internal network addresses, effectively using it as a proxy to probe otherwise unreachable services.
Internal service responses can be read back by the attacker, exposing configuration data, credentials, or other sensitive information stored on internal endpoints.
The attacker can send crafted requests that modify state on internal services, such as triggering actions via internal APIs or management endpoints that assume requests originate from a trusted host.
In cloud-hosted environments, this commonly includes querying instance metadata endpoints (such as AWS IMDSv1) to retrieve cloud credentials scoped to the host.

How HarborGuard Handles This

Available on HarborGuard: because no upstream patch exists for CVE-2026-10586 at this time, the platform monitors the advisory on every ingest cycle and will surface a patched-image rebuild the moment the plugin maintainer publishes a fix. For customers who opt into auto-remediation, that event will automatically trigger a rebuild, regression test run, and a PR opened against affected workloads. In the interim, compensating controls worth considering include network-policy isolation that restricts outbound HTTP from the WordPress container to known-good destinations, egress filtering at the container or node level to block requests to RFC-1918 and link-local address ranges (covering cloud metadata endpoints), and disabling or restricting access to AI image generation features via WordPress role configuration if the functionality is not required. HarborGuard will flag any environment running an image that bundles this plugin version so that teams can apply these mitigations while awaiting the upstream fix.

See how HarborGuard automates this

Affected packages

wpdevteam / Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns
≤ 6.1.3

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

References

Metrics

Get notified