{"vulnerability": "CVE-2026-6510", "sightings": [{"uuid": "3dcc6a11-5eae-468b-b8f6-2dc9f888e2d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-6510", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116571755456657860", "content": "\ud83d\udea8 CVE-2026-6510: InfusedWoo Pro \u22645.1.2 has a CRITICAL vuln (CVSS 9.8). Missing auth checks in iwar_save_recipe() lets attackers bypass auth & escalate to admin. No patch yet \u2014 disable plugin or restrict access now! https://radar.offseq.com/threat/cve-2026-6510-cwe-862-missing-authorization-in-inf-3dc63846 #OffSeq #WordPress #Vuln #CVE20266510", "creation_timestamp": "2026-05-14T07:30:28.231316Z"}, {"uuid": "b3f51a39-30ca-4c5b-8396-6202d272da0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-6510", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlscd2v3gu2p", "content": "CRITICAL: InfusedWoo Pro \u22645.1.2 for WordPress has a severe auth bypass (CVE-2026-6510). Attackers can escalate privileges \u2014 no patch yet. Restrict access or disable plugin now. https://radar.offseq.com/threat/cve-2026-6510-cwe-862-missing-authorization-in-inf-3dc63846 #OffSeq #WordPress #Security", "creation_timestamp": "2026-05-14T07:31:03.013053Z"}, {"uuid": "d0ca3c03-f1fb-4ae7-b60e-ef5d3c30a667", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-6510", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116572109414166733", "content": "\ud83d\udea8 CVE-2026-6510 (CRITICAL, CVSS 9.8) in InfusedWoo Pro \u22645.1.2: Missing authorization in iwar_save_recipe() lets attackers escalate privileges & gain admin access via crafted URLs. No patch yet \u2014 restrict/disable plugin. https://radar.offseq.com/threat/cve-2026-6510-cwe-862-missing-authorization-in-inf-3dc63846 #OffSeq #WordPress #Vuln", "creation_timestamp": "2026-05-14T09:00:29.444451Z"}, {"uuid": "e2569c2e-df01-4d95-8d7c-fc6392ad5ce8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6510", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlshfwl7yr2p", "content": "CVE-2026-6510 - InfusedWoo Pro\nCVE ID : CVE-2026-6510\n \n Published : May 14, 2026, 7:16 a.m. | 1\u00a0hour, 9\u00a0minutes ago\n \n Description : The InfusedWoo Pro plugin for WordPress is vulnerable to privilege escalation via missing authorization in all versions up to, and including, 5...", "creation_timestamp": "2026-05-14T09:01:34.178806Z"}, {"uuid": "30c66a9a-f532-4185-8f24-29b17027acd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6510", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlsjvzgx452o", "content": "CVE-2026-6510 - InfusedWoo Pro\nCVE ID : CVE-2026-6510\n \n Published : May 14, 2026, 7:16 a.m. | 1\u00a0hour, 14\u00a0minutes ago\n \n Description : The InfusedWoo Pro plugin for WordPress is vulnerable to privilege escalation via missing authorization in all versions up to, and including, ...", "creation_timestamp": "2026-05-14T09:46:22.164040Z"}]}