The Royal MCP WordPress plugin before 1.4.26 does not perform capability checks on the majority of its MCP tools after token authentication, allowing authenticated users with a low-privileged role such as Subscriber to read private content, enumerate all users and their roles, and create, modify, or delete content owned by other users.
Casky was already ahead
This CVE exploits attack patterns that Casky's 0matched skills already investigate — long before this vulnerability was disclosed. Claude's reasoning model maps these techniques to MITRE ATT&CK, so practitioners who ran these skills have already seen the threat behaviour in their findings.
The Royal MCP WordPress plugin before version 1.4.26 contains a privilege escalation vulnerability where authenticated users bypass capability checks on MCP tool endpoints after token authentication succeeds. This allows low-privileged users (such as Subscribers) to perform administrative actions including reading private content, enumerating user accounts and roles, and creating, modifying, or deleting content they should not access. WordPress sites using this plugin with multiple user roles are at risk, as the vulnerability fundamentally breaks the role-based access control (RBAC) model that underpins WordPress security.
While this CVE lacks explicit MITRE ATT&CK mapping, practitioners using Casky.ai would detect the underlying attack patterns through skill evaluation of Privilege Escalation (T1134) and Unauthorized Access behaviors. Claude's extended reasoning would identify the core weakness: token validation occurring without subsequent capability verification on protected endpoints. Security teams would observe findings showing authenticated but unprivileged API requests succeeding when they should fail, improper user enumeration despite role restrictions, and unauthorized content modification attempts originating from low-privilege session contexts. The absence of matching Casky skills (0) indicates this plugin-specific implementation gap would require custom detection logic mapping token-authenticated requests to WordPress capability checks (edit_posts, read_private_posts, manage_users) to surface the violation of least-privilege principles.
Composite risk scoring from EPSS, CISA KEV, Shodan, and GreyNoise — 21 security APIs correlated into a single Casky Risk Score. Coming in Casky Pro. Join early access →
Casky has 0 skills that investigate the attack patterns behind CVE-2026-10750. Run one and get CVSS-scored findings in 3 minutes.
Run the skill that detects this →© 2026 Casky.AI, Inc. · AI Security Investigation