CVE-2025-10305 | Secure Passkeys Plugin up to 1.2.1 on WordPress delete_passkey authorization

Inserito da Angelo Barbosa | Set 19, 2025 | CVE

A vulnerability marked as critical has been reported in Secure Passkeys Plugin up to 1.2.1 on WordPress. This affects the function delete_passkey. This manipulation causes missing authorization.

This vulnerability appears as CVE-2025-10305. The attack may be initiated remotely. There is no available exploit.

CVE-2025-10305 | Secure Passkeys Plugin up to 1.2.1 on WordPress delete_passkey authorization

Post correlati

CVE-2024-50458 | WP Codeus Advanced Sermons Plugin up to 3.4 on WordPress cross site scripting

CVE-2024-13312 | Drupal Open Social up to 12.3.9/12.4.8 authorization

CVE-2024-4626 | JetWidgets for Elementor Plugin up to 1.0.17 on WordPress layout_type/id cross site scripting

CVE-2025-8707 | Huuge Box App 1.0.3 on Android com.huuge.game.zjbox AndroidManifest.xml improper export of android application components