CVE-2025-8570 | BeyondCart Connector Plugin up to 1.4.2/2.1.0 on WordPress Configuration determine_current_user Remote Code Execution

Inserito da Angelo Barbosa | Set 11, 2025 | CVE

A vulnerability identified as critical has been detected in BeyondCart Connector Plugin up to 1.4.2/2.1.0 on WordPress. This issue affects the function determine_current_user of the component Configuration Handler. The manipulation leads to Remote Code Execution.

This vulnerability is documented as CVE-2025-8570. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-8570 | BeyondCart Connector Plugin up to 1.4.2/2.1.0 on WordPress Configuration determine_current_user Remote Code Execution

Post correlati

CVE-2024-5633 | Longse Technology LBH30FE200W backdoor

CVE-2024-8863 | aimhubio aim up to 3.24 Text Explorer textbox.tsx dangerouslySetInnerHTML query cross site scripting

CVE-2025-5066 | Google Chrome up to 136.0.7103.113 on Android Messages ui layer

CVE-2025-53498 | AbuseFilter Extension up to 1.39.12/1.42.6/1.43.1 on Mediawiki insufficient logging