CRITICALCVE-2026-22337Published 2026-04-27Modified 2026-04-28CNA Patchstack

CVE-2026-22337: WordPress Directorist Social Login plugin < 2.1.4 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in Directorist Directorist Social Login allows Privilege Escalation.This issue affects Directorist Social Login: from n/a before 2.1.4.

CVSS v3.1: 9.8
Severity: CRITICAL
Fixed in: 2.1.4
Affected Products: 1

Fix available

2.1.4

Affected packages

Directorist / Directorist Social Login
< 2.1.4 (from n/a)

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

patchstack.com

Metrics

Fix available