CVE-2025-14608 | WP Last Modified Info Plugin up to 1.9.5 on WordPress bulk_save post_ids resource injection

Inserito da Angelo Barbosa | Feb 13, 2026 | CVE

A vulnerability labeled as problematic has been found in WP Last Modified Info Plugin up to 1.9.5 on WordPress. This affects the function bulk_save. Such manipulation of the argument post_ids leads to improper control of resource identifiers.

This vulnerability is listed as CVE-2025-14608. The attack may be performed from remote. There is no available exploit.

CVE-2025-14608 | WP Last Modified Info Plugin up to 1.9.5 on WordPress bulk_save post_ids resource injection

Post correlati

CVE-2025-64367 | Adrian Tobey Groundhogg Plugin up to 4.2.6 on WordPress cross site scripting (EUVD-2025-37326)

CVE-2024-8483 | farookibrahim MAS Static Content Plugin up to 1.0.8 on WordPress static_content information disclosure

CVE-2024-22723 | Webtrees 2.1.18 media/ media_folder path traversal

CVE-2025-46889 | Adobe Experience Manager up to 6.5.22 access control (apsb25-48)