CVE-2025-6187 | bSecure Plugin up to 1.7.9 on WordPress REST Endpoint /webhook/v2/order_info/ authorization

Inserito da Angelo Barbosa | Lug 21, 2025 | CVE

A vulnerability classified as critical has been found in bSecure Plugin up to 1.7.9 on WordPress. Affected is an unknown function of the file /webhook/v2/order_info/ of the component REST Endpoint. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2025-6187. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-6187 | bSecure Plugin up to 1.7.9 on WordPress REST Endpoint /webhook/v2/order_info/ authorization

Post correlati

CVE-2024-0729 | ForU CMS up to 2020-06-23 cms_admin.php a_name sql injection

CVE-2025-23270 | NVIDIA Jetson Orin/IGX Orin/Xavier on Linux UEFI Management Mode error condition

CVE-2024-2024 | Folders Pro Plugin up to 3.0.2 on WordPress handle_folders_file_upload unrestricted upload

CVE-2024-33649 | WpOpal Opal Widgets for Elementor Plugin up to 1.6.9 on WordPress cross site scripting