CVE-2025-10720 | WP Private Content Plus Plugin up to 3.6.2 on WordPress Setting authorization

Inserito da Angelo Barbosa | Ott 13, 2025 | CVE

A vulnerability identified as critical has been detected in WP Private Content Plus Plugin up to 3.6.2 on WordPress. Impacted is an unknown function of the component Setting Handler. Performing manipulation results in authorization bypass.

This vulnerability was named CVE-2025-10720. The attack may be initiated remotely. There is no available exploit.

CVE-2025-10720 | WP Private Content Plus Plugin up to 3.6.2 on WordPress Setting authorization

Post correlati

CVE-2024-7012 | Red Hat Satellite 6 up to 6.13/6.14/6.15/22.0 Foreman improper authentication

CVE-2024-7197 | SourceCodester Complaints Report Management System 1.0 manage_complaint.php id sql injection

CVE-2024-7949 | SourceCodester Online Graduate Tracer System up to 1.0 fetch_genderit.php request sql injection

CVE-2024-0826 | Qi Addons for Elementor Plugin up to 1.6.7 on WordPress cross site scripting