CVE-2025-15157 | Starfish Review Generation & Marketing Plugin up to 3.1.19 on WordPress srm_restore_options_defaults improper authorization

Inserito da Angelo Barbosa | Feb 13, 2026 | CVE

A vulnerability identified as critical has been detected in Starfish Review Generation & Marketing Plugin up to 3.1.19 on WordPress. This impacts the function srm_restore_options_defaults. The manipulation leads to improper authorization.

This vulnerability is listed as CVE-2025-15157. The attack may be initiated remotely. There is no available exploit.

CVE-2025-15157 | Starfish Review Generation & Marketing Plugin up to 3.1.19 on WordPress srm_restore_options_defaults improper authorization

Post correlati

CVE-2025-10275 | YunaiV yudao-cloud up to 2025.09 /crm/business/transfer ids/newOwnerUserId improper authorization

CVE-2023-7093 | KylinSoft kylin-system-updater up to 2.0.5.16-0k2.33 com.kylin.systemupgrade Service UpgradeStrategiesDbus.py SetDownloadspeedMax os command injection

CVE-2025-22817 | Venutius BP Profile Shortcodes Extra Plugin up to 2.6.0 on WordPress cross site scripting

CVE-2025-6489 | itsourcecode Agri-Trading Online Shopping System 1.0 /transactionsave.php del sql injection