CVE-2025-60205 | meREX Addons Plugin up to 2.36.1.1 on WordPress deserialization

Inserito da Angelo Barbosa | Giu 17, 2026 | CVE

A vulnerability was found in meREX Addons Plugin up to 2.36.1.1 on WordPress. It has been classified as critical. The impacted element is an unknown function. The manipulation leads to deserialization.

This vulnerability is listed as CVE-2025-60205. The attack may be initiated remotely. There is no available exploit.

CVE-2025-60205 | meREX Addons Plugin up to 2.36.1.1 on WordPress deserialization

Post correlati

CVE-2024-47640 | weDevs WP ERP Plugin up to 1.13.2 on WordPress cross site scripting

CVE-2026-8725 | CoreWorxLab CAAL up to 1.6.0 test-hass Endpoint src/caal/webhooks.py server-side request forgery

CVE-2024-2337 | Easy Testimonials Plugin up to 3.9.5 on WordPress Shortcode cross site scripting

CVE-2025-0838 | abseil-cpp reserve/rehash size integer overflow