Back to CVE risk briefs

External risk intelligence

WordPress MStore API could allow external attackers to take control of the server

The WordPress MStore API plugin could allow external attackers to execute remote code on the server, potentially compromising operational systems and sensitive files. While public exploit code exists, there is no evidence of active, widespread exploitation at this time.

NVD published May 10, 2026 (2 days ago)

External risk briefCRITICAL

CVE-2021-47933

Exposure facts

Severity
CRITICAL
Published by NVD
May 10, 2026 (2 days ago)

H – Horizon Alert

The WordPress MStore API contains a security vulnerability that allows unauthenticated individuals to upload malicious files directly to the server. By leveraging this flaw via the REST API, an attacker could gain the ability to execute unauthorized commands, a condition known as remote code execution. This poses a significant security concern, as it could allow an external party to compromise the integrity and control of the impacted server.

A – Asset Exposure

The WordPress MStore API plugin is affected by this security vulnerability. As this technology is typically deployed on web servers that are accessible via the public internet, this flaw could be reachable by external attackers. If exploited, an unauthorized party could gain the ability to upload files to the system, potentially resulting in remote code execution and the compromise of operational systems or sensitive files.

L – Live Threat

Publicly available exploit code exists for this vulnerability, which increases the risk that an unauthorized actor could attempt to gain access to the system. While this accessibility lowers the barrier for potential misuse, the provided context does not indicate that this is currently being used in active, widespread exploitation or that there is known targeting against us. Public exploit availability makes this a relevant risk signal to be aware of, even without evidence of current, active attacks in the wild.

O – Operational Fix

Please prioritize identifying all WordPress environments within your organization that utilize the MStore API plugin. To mitigate potential security risks, please review the current installation and follow official vendor guidance for any available updates or recommended configuration changes. We also suggest monitoring your server environment for unexpected activity while prioritizing these updates to ensure continued operational stability.

References