CVE-2025-14428 | My Sticky Elements Plugin up to 2.3.3 on WordPress Bulk Lead Deletion my_sticky_elements_bulks authorization

Inserito da Angelo Barbosa | Gen 1, 2026 | CVE

A vulnerability has been found in My Sticky Elements Plugin up to 2.3.3 on WordPress and classified as problematic. This issue affects the function my_sticky_elements_bulks of the component Bulk Lead Deletion Handler. Performing manipulation results in missing authorization.

This vulnerability is identified as CVE-2025-14428. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-14428 | My Sticky Elements Plugin up to 2.3.3 on WordPress Bulk Lead Deletion my_sticky_elements_bulks authorization

Post correlati

CVE-2024-27827 | Apple macOS up to 14.4 App state issue (HT214106)

CVE-2025-26358 | Nozomi Q-Free MaxTime up to 2.11.0 HTTP ldbMT.so input validation

CVE-2024-36442 | Swissphone DiCal-RED 2.cgi cgi-bin/fdmcgiwebv2.cgi improper authentication (SYSS-2024-039)

CVE-2025-5634 | PCMan FTP Server 2.0.7 NOOP Command buffer overflow