CVE-2025-10040 | WP Import Plugin up to 7.27 on WordPress Credentials get_ftp_details authorization

Inserito da Angelo Barbosa | Set 9, 2025 | CVE

A vulnerability, which was classified as problematic, was found in WP Import Plugin up to 7.27 on WordPress. This vulnerability affects the function get_ftp_details of the component Credentials Handler. Executing manipulation can lead to missing authorization.

This vulnerability appears as CVE-2025-10040. The attack may be performed from remote. There is no available exploit.

CVE-2025-10040 | WP Import Plugin up to 7.27 on WordPress Credentials get_ftp_details authorization

Post correlati

CVE-2024-32324 | Shenzhen Libituo Technology LBT-T300-T400 3.2 rc config_vpn_pptp vpn_client_ip buffer overflow

CVE-2024-5519 | ItsourceCode Learning Management System Project In PHP 1.0 login.php user_email sql injection

CVE-2024-13219 | Privacy Policy Genius Plugin up to 2.0.4 on WordPress cross site scripting

CVE-2025-50699 | PHPGurukul Online DJ Booking Management System 2.0 view-user-queries.php cross site scripting