CVE-2025-5957 | Guest Support Plugin up to 1.2.2 on WordPress deleteMassTickets authorization

Inserito da Angelo Barbosa | Lug 7, 2025 | CVE

A vulnerability was found in Guest Support Plugin up to 1.2.2 on WordPress. It has been classified as critical. This affects the function deleteMassTickets. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2025-5957. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-5957 | Guest Support Plugin up to 1.2.2 on WordPress deleteMassTickets authorization

Post correlati

CVE-2024-53386 | Piqnt Stage.js up to 0.8.10 HTML Element code injection

CVE-2024-9391 | Mozilla Firefox up to 130 on Android Full-screen Mode clickjacking

CVE-2024-22396 | SonicWall SonicOS IPsec buffer overflow (SNWLID-2024-0004)

CVE-2024-53866 | pnpm up to 9.15.x untrusted search path (GHSA-vm32-9rqf-rh3r)