A vulnerability was found in edmonparker Read More & Accordion Plugin up to 3.5.7 on WordPress and classified as critical . This impacts the function RadMoreAjax::importData of the component Setting Handler . Such manipulation of the argument wp_capabilities leads to improper privilege management. This vulnerability is uniquely identified as CVE-2026-7467 . The attack can be launched remotely. No exploit exists. It is suggested to upgrade the affected component.