cleantalk
Vulnerabilities and Security Researches

Wholesale Suite – WooCommerce Wholesale Prices, B2B, Catalog Mode, Order Form, Wholesale User Roles, Dynamic Pricing & Mo, CVE-2026-27541

CVE, Research URL

CVE-2026-27541

Home page URL

Security reports for Wholesale Suite – WooCommerce Wholesale Prices, B2B, Catalog Mode, Order Form, Wholesale User Roles, Dynamic Pricing & Mo

Application

Wholesale Suite – WooCommerce Wholesale Prices, B2B, Catalog Mode, Order Form, Wholesale User Roles, Dynamic Pricing & Mo

Published on
Mar 05, 2026
Research Description
Incorrect Privilege Assignment vulnerability in Josh Kohlbach Wholesale Suite woocommerce-wholesale-prices allows Privilege Escalation.This issue affects Wholesale Suite: from n/a through <= 2.2.6.
Affected versions
max 2.2.6.
Status
vulnerable
Previous vulnerability researches
Grid Accordion Lite (CVE-2024-11874) , Jan 11, 2025
New vulnerability
Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms (CVE-2026-25430) , Mar 29, 2026
Co-Authors, Multiple Authors and Guest Authors in an Author Box with PublishPress Authors (CVE-2026-25309) , Mar 29, 2026
Widget Wrangler (CVE-2026-25447) , Mar 29, 2026
Astra Bulk Edit (CVE-2026-32431) , Mar 29, 2026
JS Help Desk &#8211; Best Help Desk &amp; Support Plugin (CVE-2026-32535) , Mar 29, 2026