CVE-2025-6994 | Reveal Listing Plugin up to 3.3 on WordPress listing_user_role Remote Code Execution

Inserito da Angelo Barbosa | Ago 5, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Reveal Listing Plugin up to 3.3 on WordPress. Affected by this issue is some unknown functionality. The manipulation of the argument listing_user_role leads to Remote Code Execution.

This vulnerability is handled as CVE-2025-6994. The attack may be launched remotely. There is no exploit available.

CVE-2025-6994 | Reveal Listing Plugin up to 3.3 on WordPress listing_user_role Remote Code Execution

Post correlati

CVE-2024-34021 | ELECOM WRC-2533GS2V-B/WRC-2533GS2-B/WRC-2533GS2-W up to 1.68 os command injection

CVE-2024-32833 | Nick Halsey List Custom Taxonomy Widget Plugin up to 4.1 on WordPress cross site scripting

CVE-2024-8862 | h2oai h2o-3 3.46.0.4 JDBC Connection /dtale/chart-data/1 getConnectionSafe query deserialization

CVE-2023-24049 | Connectize AC21000 G6 641.139.1.1256 Local Privilege Escalation