CVE-2025-3811 | WPBookit Plugin up to 1.0.2 on WordPress edit_newdata_customer_callback resource injection

Inserito da Angelo Barbosa | Mag 8, 2025 | CVE

A vulnerability, which was classified as problematic, was found in WPBookit Plugin up to 1.0.2 on WordPress. Affected is the function edit_newdata_customer_callback. The manipulation leads to improper control of resource identifiers.

This vulnerability is traded as CVE-2025-3811. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-3811 | WPBookit Plugin up to 1.0.2 on WordPress edit_newdata_customer_callback resource injection

Post correlati

CVE-2024-51247 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi doPPPo command injection

CVE-2024-10892 | Cost Calculator Builder Plugin up to 3.2.42 on WordPress cross-site request forgery

CVE-2024-32986 | filips123 PWAsForFirefox up to 2.11.x escape, meta, or control sequences (GHSA-jmhv-m7v5-g5jq)

CVE-2024-32661 | FreeRDP up to 3.5.0 null pointer dereference (GHSA-p5m5-342g-pv9m)