CVE-2025-48335 | Responsive Plus Theme up to 3.2.0 on WordPress import_sites authorization

Inserito da Angelo Barbosa | Giu 2, 2025 | CVE

A vulnerability was found in Responsive Plus Theme up to 3.2.0 on WordPress. It has been classified as critical. Affected is the function import_sites. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2025-48335. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-48335 | Responsive Plus Theme up to 3.2.0 on WordPress import_sites authorization

Post correlati

CVE-2024-1474 | Progress WS_FTP Server up to 8.8.4 Administrative Interface cross site scripting

CVE-2023-44291 | Dell PowerProtect Data Manager DM5500 Appliance up to 5.14 PPOE os command injection (dsa-2023-425)

CVE-2024-56003 | David Cramer Caldera SMTP Mailer Plugin up to 1.0.1 on WordPress authorization

CVE-2024-28298 | BM SOFT BMPlanning 1.0.0.1 /BMServerR.dll/BMRest SEC_IDF/LIE_IDF/PLANF_IDF/CLI_IDF/DOS_IDF sql injection