CVE-2026-12224 - Dokan Pro <= 5.0.4 - Authenticated (Vendor+) Privilege Escalation via update_capabilities REST Endpoint
CVE ID :CVE-2026-12224 Published : July 1, 2026, 6:51 a.m. | 6 hours, 21 minutes ago Description :The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via update_capabilities REST Endpoint in all versions up to, and including, 5.0.4. This is due to the...