CVE-2025-14366 | dugudlabs Eyewear Prescription Form Plugin up to 6.0.1 on WordPress Name/Price/Parent authorization

Inserito da Angelo Barbosa | Dic 12, 2025 | CVE

A vulnerability described as critical has been identified in dugudlabs Eyewear Prescription Form Plugin up to 6.0.1 on WordPress. This affects an unknown part. Executing manipulation of the argument Name/Price/Parent can lead to missing authorization.

This vulnerability is registered as CVE-2025-14366. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-14366 | dugudlabs Eyewear Prescription Form Plugin up to 6.0.1 on WordPress Name/Price/Parent authorization

Post correlati

CVE-2024-36302 | Trend Micro Apex One Local Privilege Escalation

CVE-2024-13448 | ThemeREX Addons Plugin up to 2.32.3 on WordPress trx_addons_uploads_save_data unrestricted upload

CVE-2024-5559 | Schneider Electric PowerLogic P5 up to 01.500.104 Reset Token risky encryption (SEVD-2024-163-02)

CVE-2025-10622 | Foreman Transpiler Command ct_location/fcct_location os command injection