The Debugger & Troubleshooter plugin for WordPress had a vulnerability where it accepted the wp_debug_troubleshoot_simulate_user cookie value directly as a user ID without validation or authorization. This allowed unauthenticated attackers to override the determine_current_user filter and impersonate any user by setting the cookie to the target user ID. The vulnerability enabled privilege escalation to administrator level, allowing attackers to perform privileged actions on the site. The fix in version 1.4.0 replaced this with a cryptographically validated token system, restricting simulation initiation to administrators and validating tokens against database mappings.

Successful exploitation allows unauthenticated attackers to gain administrator-level access to affected WordPress sites using the vulnerable plugin. This includes the ability to create new administrator accounts, modify site content, install plugins, and take complete control of the site. The CVSS score of 8.8 reflects the high impact on confidentiality, integrity, and availability.

Upgrade the Debugger & Troubleshooter plugin to version 1.4.0 or later, where the vulnerability is fixed by implementing cryptographic token validation and restricting user simulation to administrators. No other mitigation is indicated or necessary once the plugin is updated. Patch status is not explicitly stated but the fix is included in version 1.4.0, so updating is the recommended remediation.