Jan 162026 Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access A critical WordPress Modular DS plugin flaw (CVE-2026–23550) allows unauthenticated attackers to gain admin access; patched in version 2.5.2.
