CVE-2025-3810 | WPBookit Plugin up to 1.0.2 on WordPress edit_profile_data resource injection

Inserito da Angelo Barbosa | Mag 8, 2025 | CVE

A vulnerability, which was classified as critical, has been found in WPBookit Plugin up to 1.0.2 on WordPress. This issue affects the function edit_profile_data. The manipulation leads to improper control of resource identifiers.

The identification of this vulnerability is CVE-2025-3810. The attack may be initiated remotely. There is no exploit available.

CVE-2025-3810 | WPBookit Plugin up to 1.0.2 on WordPress edit_profile_data resource injection

Post correlati

CVE-2024-6071 | PTC Creo Elements/Direct License Server up to 20.7.0.0 Web Interface heap-based overflow (icsa-24-177-02)

CVE-2023-50268 | jq = 1.7 decNumber buffer overflow (GHSA-7hmr-442f-qc8j)

CVE-2024-53943 | NRadio N8-180 NROS-1.9.2.n3.c5 SSID radio injection

CVE-2024-33326 | Lumisxp 15.0.x/16.1.x XsltResultControllerHtml.jsp lumPageID cross site scripting