CVE-2025-6721 | Vchasno Kasa Plugin up to 1.0.3 on WordPress Invoice Generation mrkv_vchasno_kasa_wc_do_metabox_action authorization

Inserito da Angelo Barbosa | Lug 18, 2025 | CVE

A vulnerability was found in Vchasno Kasa Plugin up to 1.0.3 on WordPress. It has been declared as problematic. This vulnerability affects the function mrkv_vchasno_kasa_wc_do_metabox_action of the component Invoice Generation Handler. The manipulation leads to missing authorization.

This vulnerability was named CVE-2025-6721. The attack can be initiated remotely. There is no exploit available.

CVE-2025-6721 | Vchasno Kasa Plugin up to 1.0.3 on WordPress Invoice Generation mrkv_vchasno_kasa_wc_do_metabox_action authorization

Post correlati

CVE-2021-47437 | Linux Kernel up to 5.14.13 adis16475 adis_write_reg_16 deadlock (04e03b907022/9da1b86865ab)

CVE-2025-21343 | Microsoft Windows 11 22H2/11 23H2/11 24H2 Web Threat Defense User Service privileges management

CVE-2024-8727 | DK PDF Plugin up to 1.9.6 on WordPress cross site scripting

CVE-2025-25745 | D-Link DIR-853 A1 1.20B07 SetQuickVPNSettings Module Password stack-based overflow