CVE-2025-13950 | OneSignal Plugin up to 3.6.1 on WordPress Setting authorization

Inserito da Angelo Barbosa | Dic 15, 2025 | CVE

A vulnerability has been found in OneSignal Plugin up to 3.6.1 on WordPress and classified as problematic. Impacted is an unknown function of the component Setting Handler. This manipulation causes missing authorization.

This vulnerability is handled as CVE-2025-13950. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-13950 | OneSignal Plugin up to 3.6.1 on WordPress Setting authorization

Post correlati

CVE-2025-4793 | PHPGurukul Online Course Registration 3.1 edit-student-profile.php cgpa sql injection

CVE-2024-38507 | JetBrains Hub up to 2023.1.15725 Project Description cross site scripting

CVE-2025-6492 | MarkText up to 0.17.1 index.js getRecommendTitleFromMarkdownString redos (ID 3952)

CVE-2025-5719 | Vivo Wallet missing authentication