CVE-2025-5835 | Droip Plugin up to 2.2.0 on WordPress Setting droip_post_apis authorization

Inserito da Angelo Barbosa | Lug 24, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Droip Plugin up to 2.2.0 on WordPress. This issue affects the function droip_post_apis of the component Setting Handler. The manipulation leads to missing authorization.

The identification of this vulnerability is CVE-2025-5835. The attack may be initiated remotely. There is no exploit available.

CVE-2025-5835 | Droip Plugin up to 2.2.0 on WordPress Setting droip_post_apis authorization

Post correlati

CVE-2024-41761 | IBM DB2/DB2 Connect Server 10.5/11.1/11.5 Query memory allocation

CVE-2025-53904 | The-Scratch-Channel up to b66a1cae45e05ad8971aecd96c3322520f8a5725 /api/admin.js cross site scripting (GHSA-hgh4-pj74-f5rr)

CVE-2024-7116 | MD-MAFUJUL-HASAN Online-Payroll-Management-System up to 20230911 /branch_viewmore.php id sql injection

CVE-2024-2690 | SourceCodester Online Discussion Forum Site 1.0 /uupdate.php ima unrestricted upload