{"uuid": "68951689-a832-4fbe-9b34-5c52dd9f07f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11963", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mqkvm3475223", "content": "Your subscribers can promote themselves to admin. CVE-2026-11963 (CVSS 8.1) lets any logged-in user hijack another account's role and membership tier. No patch available. Disable User Registration &amp; Membership now. Scan your WordPress site: pulse-wp.com\n#WordPress #CVE #CyberSecurity", "creation_timestamp": "2026-07-14T00:00:13.705443Z"}