CVE-2025-3055 | WP User Frontend Pro Plugin up to 4.1.3 on WordPress delete_avatar_ajax denial of service

Inserito da Angelo Barbosa | Giu 4, 2025 | CVE

A vulnerability classified as critical was found in WP User Frontend Pro Plugin up to 4.1.3 on WordPress. This vulnerability affects the function delete_avatar_ajax. The manipulation leads to denial of service.

This vulnerability was named CVE-2025-3055. The attack can be initiated remotely. There is no exploit available.

CVE-2025-3055 | WP User Frontend Pro Plugin up to 4.1.3 on WordPress delete_avatar_ajax denial of service

Post correlati

CVE-2024-46801 | Linux Kernel up to 6.10.9 libfs get_stashed_dentry null pointer dereference (03e2a1209a83/4e32c25b58b9)

CVE-2024-4617 | Rank Math SEO with AI Best SEO Tools Plugin up to 1.0.218 on WordPress cross site scripting

CVE-2024-3995 | Perforce Helix ALM 2020.3.1 Build 22 command injection

CVE-2024-7692 | Flaming Forms Plugin up to 1.0.1 on WordPress cross site scripting