CVE-2025-10742 | Truelysell Core Plugin up to 1.8.6 on WordPress Shortcode truelysell_edit_staff improper authentication

Inserito da Angelo Barbosa | Ott 16, 2025 | CVE

A vulnerability labeled as critical has been found in Truelysell Core Plugin up to 1.8.6 on WordPress. Affected by this issue is the function truelysell_edit_staff of the component Shortcode Handler. The manipulation results in improper authentication.

This vulnerability was named CVE-2025-10742. The attack may be performed from remote. There is no available exploit.

CVE-2025-10742 | Truelysell Core Plugin up to 1.8.6 on WordPress Shortcode truelysell_edit_staff improper authentication

Post correlati

CVE-2025-0399 | StarSea99 starsea-mall 1.0 uploadController.java UploadController file unrestricted upload

CVE-2024-22002 | Corsair iCUE 5.9.105 on Windows cuepkg uncontrolled search path

CVE-2023-6422 | BigProf Online Clinic Management System 2.2 patients_view.php FirstRecord cross site scripting

CVE-2024-43744 | Adobe Experience Manager up to 6.5.21 Form Field cross site scripting (apsb24-69)