CVE-2025-4101 | MultiVendorX Plugin up to 4.2.22 on WordPress delete_fpm_product improper authentication

Inserito da Angelo Barbosa | Mag 17, 2025 | CVE

A vulnerability, which was classified as critical, was found in MultiVendorX Plugin up to 4.2.22 on WordPress. Affected is the function delete_fpm_product. The manipulation leads to improper authentication.

This vulnerability is traded as CVE-2025-4101. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-4101 | MultiVendorX Plugin up to 4.2.22 on WordPress delete_fpm_product improper authentication

Post correlati

CVE-2024-34092 | Archer Platform prior 2024.04 Authentication session expiration

CVE-2024-11962 | code-projects Simple Car Rental System 1.0 /login.php uname sql injection

CVE-2024-34436 | SKT Themes SKT Addons for Elementor Plugin up to 1.8 on WordPress cross site scripting

CVE-2024-57839 | Linux Kernel up to 6.12.4 do_page_cache_ra denial of service