CVE-2025-6213 | Nginx Cache Purge Preload Plugin up to 2.1.1 on WordPress nppp_preload_cache_on_update HTTP_REFERERER privilege escalation

Inserito da Angelo Barbosa | Lug 21, 2025 | CVE

A vulnerability has been found in Nginx Cache Purge Preload Plugin up to 2.1.1 on WordPress and classified as critical. This vulnerability affects the function nppp_preload_cache_on_update. The manipulation of the argument HTTP_REFERERER leads to privilege escalation.

This vulnerability was named CVE-2025-6213. The attack can be initiated remotely. There is no exploit available.

CVE-2025-6213 | Nginx Cache Purge Preload Plugin up to 2.1.1 on WordPress nppp_preload_cache_on_update HTTP_REFERERER privilege escalation

Post correlati

CVE-2024-9441 | Linear eMerge e3-Series up to 1.00-07 forgot_password login_id os command injection

CVE-2022-49460 | Linux Kernel up to 5.18.2 remove state issue

CVE-2024-6195 | itsourcecode Tailoring Management System 1.0 orderadd.php customer sql injection

CVE-2024-12062 | Charity Addon for Elementor Plugin up to 1.3.2 on WordPress Post information disclosure