{“lastseen”:””,”description”:”The Firebase Support \\u0026 Chat Management plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.1.1. This is due to the `firebase_auth()` function authenticating the request as the WordPress user whose email is supplied in the `user_email` POST parameter without verifying ownership of that email (no Firebase ID token signature\/issuer\/audience verification). This makes it possible for authenticated attackers, with Subscriber-level access and above, to log in as an arbitrary existing user \u2014 including an Administrator \u2014 by submitting that user’s email address to the `acb_firebase_auth` AJAX action, resulting in full account takeover.”,”published”:”2026-05-27T05:31:28.027Z”,”modified”:”2026-05-27T05:31:28.027Z”,”type”:”cve”,”title”:”Firebase Support \\u0026 Chat Management \\u003c= 3.1.1 – Missing Authorization to Authenticated (Subscriber+) Privilege Escalation”,”source”:”Wordfence”,”references”:”https:\/\/www.wordfence.com\/threat-intel\/vulnerabilities\/id\/90783d75-a255-4133-ac7b-32e0a70c8c69?source=cve\\nhttps:\/\/plugins.trac.wordpress.org\/browser\/admin-chat-box\/tags\/3.1.1\/inc\/ACB_AjaxHandler.php#L237\\nhttps:\/\/plugins.trac.wordpress.org\/browser\/admin-chat-box\/trunk\/inc\/ACB_AjaxHandler.php#L237\\nhttps:\/\/plugins.trac.wordpress.org\/browser\/admin-chat-box\/tags\/3.1.1\/inc\/ACB_AjaxHandler.php#L338\\nhttps:\/\/plugins.trac.wordpress.org\/browser\/admin-chat-box\/trunk\/inc\/ACB_AjaxHandler.php#L338″,”id”:”CVE-2026-8787″,”bulletinFamily”:””,”cwe”:[“CWE-269″],”cvelist”:null,”sourceData”:”devsabbirahmed Firebase Support \\u0026 Chat Management \\u003c= 3.1.1″,”sourceHref”:””,”cvss”:{“score”:8.8,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Firebase Support \\u0026 Chat Management”,”version”:”\\u003c= 3.1.1″,”vendor”:”devsabbirahmed”,”ai_description”:”Privilege escalation vulnerability due to missing authorization in the Firebase Support \\u0026 Chat Management plugin for WordPress, allowing authenticated attackers to log in as an arbitrary existing user, including an Administrator.”,”ai_severity”:”High”,”ai_vendor”:”devsabbirahmed”,”ai_product”:”Firebase Support \\u0026 Chat Management”,”ai_version”:”\\u003c= 3.1.1″,”ai_score”:8.8}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”The Firebase Support \\u0026 Chat Management plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.1.1. This is due…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,41,12,15,13,7,11,5],"class_list":["post-57258","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-88","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n