CVE-2025-3609 | Reales WP STPT Plugin up to 2.1.2 on WordPress User Registration reales_user_signup_form improper authorization

Inserito da Angelo Barbosa | Mag 5, 2025 | CVE

A vulnerability was found in Reales WP STPT Plugin up to 2.1.2 on WordPress and classified as critical. Affected by this issue is the function reales_user_signup_form of the component User Registration Handler. The manipulation leads to improper authorization.

This vulnerability is handled as CVE-2025-3609. The attack may be launched remotely. There is no exploit available.

CVE-2025-3609 | Reales WP STPT Plugin up to 2.1.2 on WordPress User Registration reales_user_signup_form improper authorization

Post correlati

CVE-2024-7256 | Google Chrome up to 127.0.6533.72 Dawn input validation

CVE-2024-29449 | ROS2 Humble Hawksbill cleartext transmission

CVE-2024-51709 | Marian Dietz TeleAdmin Plugin up to 1.0.0 on WordPress cross site scripting

CVE-2024-2258 | 10Web Form Maker Plugin up to 1.15.24 on WordPress cross site scripting