CVE-2025-8565 | WP Legal Pages Plugin up to 3.4.3 on WordPress wplp_gdpr_install_plugin_ajax_handler authorization

Inserito da Angelo Barbosa | Set 17, 2025 | CVE

A vulnerability was found in WP Legal Pages Plugin up to 3.4.3 on WordPress and classified as critical. Affected by this issue is the function wplp_gdpr_install_plugin_ajax_handler. Such manipulation leads to missing authorization.

This vulnerability is documented as CVE-2025-8565. The attack can be executed remotely. There is not any exploit available.

CVE-2025-8565 | WP Legal Pages Plugin up to 3.4.3 on WordPress wplp_gdpr_install_plugin_ajax_handler authorization

Post correlati

CVE-2024-37642 | TrendNet TEW-814DAP 1.01B01 /formSystemCheck ipv4_ping/ipv6_ping command injection

CVE-2024-27404 | Linux Kernel up to 6.0/6.1.80/6.6.18/6.7.6 remote_id Privilege Escalation

CVE-2024-32723 | Code Tides Advanced Floating Content Plugin up to 1.2.5 on WordPress cross site scripting

CVE-2024-25690 | Esri ArcGIS Enterprise Web App Builder up to 11.1 on ArcGIS Link cross site scripting