CVE-2026-25374 | raratheme Spa and Salon Plugin up to 1.3.2 on WordPress authorization

Inserito da Angelo Barbosa | Feb 19, 2026 | CVE

A vulnerability was found in raratheme Spa and Salon Plugin up to 1.3.2 on WordPress. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2026-25374. The attack is possible to be carried out remotely. No exploit exists.

CVE-2026-25374 | raratheme Spa and Salon Plugin up to 1.3.2 on WordPress authorization

Post correlati

CVE-2024-34044 | O-RAN E2T I-Release buildPrometheusList peerInfo null pointer dereference

CVE-2024-28090 | Technicolor TC8715D 01.EF.04.38.00-180405-S-FF9-D dyn_dns.asp User name cross site scripting

CVE-2024-20112 | MediaTek MT6878/MT6886/MT6897/MT6985/MT8676 Isp out-of-bounds (MSV-1730 / ALPS09071481)

CVE-2023-52613 | Linux Kernel up to 6.6.13/6.7.1 loongson2_thermal PTR_ERR comparison (70481755ed77/6010a9fc14eb/15ef92e9c411)