CVE-2025-5394 | Alone Plugin up to 7.8.3 on WordPress alone_import_pack_install_plugin authorization

Inserito da Angelo Barbosa | Lug 14, 2025 | CVE

A vulnerability classified as critical was found in Alone Plugin up to 7.8.3 on WordPress. This vulnerability affects the function alone_import_pack_install_plugin. The manipulation leads to missing authorization.

This vulnerability was named CVE-2025-5394. The attack can be initiated remotely. There is no exploit available.

CVE-2025-5394 | Alone Plugin up to 7.8.3 on WordPress alone_import_pack_install_plugin authorization

Post correlati

CVE-2023-51673 | Designful Stylish Price List Plugin up to 7.0.17 on WordPress cross-site request forgery

CVE-2024-32556 | Nabil Lemsieh HurryTimer Plugin up to 2.9.2 on WordPress cross site scripting

CVE-2024-20024 | MediaTek MT8678 Flashc out-of-bounds write (ALPS08541635)

CVE-2023-5931 | rtMedia Plugin/BuddyPress Plugin/bbPress Plugin up to 4.6.15 on WordPress unrestricted upload