CVE-2025-10304 | Everest Backup Plugin up to 2.3.8 on WordPress process_status_unlink authorization

Inserito da Angelo Barbosa | Dic 2, 2025 | CVE

A vulnerability was found in Everest Backup Plugin up to 2.3.8 on WordPress. It has been classified as critical. Affected by this issue is the function process_status_unlink of the component Backup Handler. The manipulation leads to missing authorization.

This vulnerability is referenced as CVE-2025-10304. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-10304 | Everest Backup Plugin up to 2.3.8 on WordPress process_status_unlink authorization

Post correlati

CVE-2024-2357 | Libreswan up to 4.12 IKEv2 Retransmit denial of service

CVE-2024-8445 | Red Hat Directory Server/Enterprise Linux 389-ds-base userPassword denial of service

CVE-2024-29506 | Artifex Ghostscript up to 10.2.x PDF Filter Name pdfi_apply_filter stack-based overflow

CVE-2023-49786 | Asterisk prior 18.20.1/20.5.1/21.0.1 DTLS unknown vulnerability (GHSA-hxj9-xwr8-w8pq)