Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-11-04
CVE-2025-12158 - Simple User Capabilities Plugin
The Simple User Capabilities plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the suc_submit_capabilities() function in all versions up to, and including, 1.0. This makes it possible for unauthenticated attackers to elevate the role of any user account to administrator.
PLUGIN
Simple User Capabilities
CVE-2025-12158
Risk Score
Threat Entry
Updated 2025-11-04
CVE-2025-11008 - Ce21 Suite Plugin
The CE21 Suite plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.1 via the log file. This makes it possible for unauthenticated attackers to extract sensitive data including authentication credentials, which can be used to log in as other users as long as they have used the plugin's custom authentication feature before. This may include administrators, which makes a complete site takeover possible.
PLUGIN
Ce21 Suite
CVE-2025-11008
Risk Score
Threat Entry
Updated 2025-11-04
CVE-2025-11007 - Ce21 Suite Plugin
The CE21 Suite plugin for WordPress is vulnerable to unauthorized plugin settings update due to a missing capability check on the wp_ajax_nopriv_ce21_single_sign_on_save_api_settings AJAX action in versions 2.2.1 to 2.3.1. This makes it possible for unauthenticated attackers to update the plugin's API settings including a secret key used for authentication. This allows unauthenticated attackers to create new admin accounts on an affected site.
PLUGIN
Ce21 Suite
CVE-2025-11007
Risk Score
Threat Entry
Updated 2025-11-04
CVE-2025-8900 - Doccure Core Plugin
The Doccure Core plugin for WordPress is vulnerable to privilege escalation in versions up to, and excluding, 1.5.4. This is due to the plugin allowing users who are registering new accounts to set their own role or by supplying 'user_type' field. This makes it possible for unauthenticated attackers to gain elevated privileges by creating an account with the administrator role.
PLUGIN
Doccure Core
CVE-2025-8900
Risk Score
Threat Entry
Updated 2025-11-04
CVE-2025-11499 - Fluent Plugin
The Tablesome Table – Contact Form DB – WPForms, CF7, Gravity, Forminator, Fluent plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_featured_image_from_external_url() function in all versions up to, and including, 1.1.32. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible in configurations where unauthenticated users have been provided with a method for adding featured images, and the workflow trigger is created.
PLUGIN
Fluent
CVE-2025-11499
Risk Score
Threat Entry
Updated 2025-11-04
CVE-2025-11833 - Mobile App Plugin
The Post SMTP – Complete SMTP Solution with Logs, Alerts, Backup SMTP & Mobile App plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the __construct function in all versions up to, and including, 3.6.0. This makes it possible for unauthenticated attackers to read arbitrary logged emails sent through the Post SMTP plugin, including password reset emails containing password reset links, which can lead to account takeover.
PLUGIN
Mobile App
CVE-2025-11833
Risk Score
Threat Entry
Updated 2025-11-04
CVE-2025-8489 - King Addons Plugin
The King Addons for Elementor – Free Elements, Widgets, Templates, and Features for Elementor plugin for WordPress is vulnerable to privilege escalation in versions 24.12.92 to 51.1.14 . This is due to the plugin not properly restricting the roles that users can register with. This makes it possible for unauthenticated attackers to register with administrator-level user accounts.
PLUGIN
King Addons
CVE-2025-8489
Risk Score
Threat Entry
Updated 2025-11-04
CVE-2025-5397 - Noo Jobmonster Theme
The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the check_login() function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers to bypass standard authentication and access administrative user accounts. Please note social login needs to be enabled in order for a site to be impacted by this vulnerability.
THEME
Noo Jobmonster
CVE-2025-5397
Risk Score
Threat Entry
Updated 2025-10-30
CVE-2025-4665 - Contact Form Cfdb7 Plugin
WordPress plugin Contact Form CFDB7 versions up to and including 1.3.2 are affected by a pre-authentication SQL injection vulnerability that cascades into insecure deserialization (PHP Object Injection). The weakness arises due to insufficient validation of user input in plugin endpoints, allowing crafted input to influence backend queries in unexpected ways. Using specially crafted payloads, this can escalate into unsafe deserialization, enabling arbitrary object injection in PHP. Although the issue is remotely exploitable without authentication, it does require a crafted interaction with the affected endpoint in order to trigger successfully.
PLUGIN
Contact Form Cfdb7
CVE-2025-4665
Risk Score
Threat Entry
Updated 2025-10-27
CVE-2025-6440 - Woocommerce Designer Pro Plugin
The WooCommerce Designer Pro plugin for WordPress, used by the Pricom - Printing Company & Design Services WordPress theme, is vulnerable to arbitrary file uploads due to missing file type validation in the 'wcdp_save_canvas_design_ajax' function in all versions up to, and including, 1.9.26. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Woocommerce Designer Pro
CVE-2025-6440
Risk Score
Threat Entry
Updated 2025-10-21
CVE-2025-10916 - Before 1 Plugin
The FormGent WordPress plugin before 1.0.4 is vulnerable to arbitrary file deletion due to insufficient file path validation. This makes it possible for unauthenticated attackers to delete arbitrary files on the server.
PLUGIN
Before 1
CVE-2025-10916
Risk Score
Threat Entry
Updated 2025-10-21
CVE-2025-11391 - Woocommerce Product Addon Plugin
The PPOM – Product Addons & Custom Fields for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the image cropper functionality in all versions up to, and including, 33.0.15. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible. While the vulnerable code is in the free version, this only affected users with the paid version of the software installed and activated.
PLUGIN
Woocommerce Product Addon
CVE-2025-11391
Risk Score
Threat Entry
Updated 2025-10-16
CVE-2025-10850 - Felan Framework Plugin
The Felan Framework plugin for WordPress is vulnerable to improper authentication in versions up to, and including, 1.1.4. This is due to the hardcoded password in the 'fb_ajax_login_or_register' function and in the 'google_ajax_login_or_register' function. This makes it possible for unauthenticated attackers to log in as any existing user on the site, if they registered with facebook or google social login and did not change their password.
PLUGIN
Felan Framework
CVE-2025-10850
Risk Score
Threat Entry
Updated 2025-10-16
CVE-2025-10742 - Truelysell Core Plugin
The Truelysell Core plugin for WordPress is vulnerable to Arbitrary User Password Change in versions up to, and including, 1.8.6. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for unauthenticated attackers to change user passwords and potentially take over administrator accounts. Note: This can only be exploited unauthenticated if the attacker knows which page contains the 'truelysell_edit_staff' shortcode.
PLUGIN
Truelysell Core
CVE-2025-10742
Risk Score
Threat Entry
Updated 2025-10-16
CVE-2025-9967 - Orion Sms Otp Verification Plugin
The Orion SMS OTP Verification plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.1.7. This is due to the plugin not properly validating a user's identity prior to updating their password. This makes it possible for unauthenticated attackers to change arbitrary user's password to a one-time password if the attacker knows the user's phone number
PLUGIN
Orion Sms Otp Verification
CVE-2025-9967
Risk Score
Threat Entry
Updated 2025-10-16
CVE-2025-10294 - Ownid Passwordless Login Plugin
The OwnID Passwordless Login plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.3.4. This is due to the plugin not properly checking if the ownid_shared_secret value is empty prior to authenticating a user via JWT. This makes it possible for unauthenticated attackers to log in as other users, including administrators, on instances where the plugin has not been fully configured yet.
PLUGIN
Ownid Passwordless Login
CVE-2025-10294
Risk Score
Threat Entry
Updated 2025-10-16
CVE-2025-10041 - Flex Qr Code Generator Plugin
The Flex QR Code Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in thesave_qr_code_to_db() function in all versions up to, and including, 1.2.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Flex Qr Code Generator
CVE-2025-10041
Risk Score
Threat Entry
Updated 2025-10-14
CVE-2025-6439 - Woocommerce Designer Pro Plugin
The WooCommerce Designer Pro plugin for WordPress, used by the Pricom - Printing Company & Design Services WordPress theme, is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'wcdp_save_canvas_design_ajax' function in all versions up to, and including, 1.9.26. This makes it possible for unauthenticated attackers to delete all files in an arbitrary directory on the server, which can lead to remote code execution, data loss, or site unavailability.
PLUGIN
Woocommerce Designer Pro
CVE-2025-6439
Risk Score
Threat Entry
Updated 2025-10-14
CVE-2025-6553 - Ovatheme Events Manager Plugin
The Ovatheme Events Manager plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the process_checkout() function in all versions up to, and including, 1.8.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Ovatheme Events Manager
CVE-2025-6553
Risk Score
Threat Entry
Updated 2025-10-14
CVE-2025-11533 - Wp Freeio Plugin
The WP Freeio plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.21. This is due to the process_register() function not restricting what user roles a user can register with. This makes it possible for unauthenticated attackers to supply the 'administrator' role during registration and gain administrator access to the site.
PLUGIN
Wp Freeio
CVE-2025-11533
Risk Score