CVE-2025-12826 | Custom Post Type UI Plugin up to 1.18.0 on WordPress cptui_process_post_type authorization

Inserito da Angelo Barbosa | Dic 3, 2025 | CVE

A vulnerability was found in Custom Post Type UI Plugin up to 1.18.0 on WordPress. It has been classified as problematic. The affected element is the function cptui_process_post_type. The manipulation leads to missing authorization.

This vulnerability is documented as CVE-2025-12826. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-12826 | Custom Post Type UI Plugin up to 1.18.0 on WordPress cptui_process_post_type authorization

Post correlati

CVE-2025-55037 | kujirahand TkEasyGUI up to 1.0.21 Message os command injection

CVE-2024-49701 | Theme Horse Mags Plugin up to 1.1.6 on WordPress filename control

CVE-2025-11980 | Quick Featured Images Plugin up to 13.7.3 on WordPress delete_orphaned sql injection

CVE-2024-3167 | Ocean Extra Plugin up to 2.2.6 on WordPress cross site scripting