CVE-2025-0958 | nitesh_singh Ultimate WordPress Auction Plugin up to 4.2.9 on WordPress improper authentication

Posted by Angelo Barbosa | Mar 4, 2025 | CVE

A vulnerability, which was classified as critical, has been found in nitesh_singh Ultimate WordPress Auction Plugin up to 4.2.9 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to improper authentication.

This vulnerability is handled as CVE-2025-0958. The attack may be launched remotely. There is no exploit available.

CVE-2025-0958 | nitesh_singh Ultimate WordPress Auction Plugin up to 4.2.9 on WordPress improper authentication

Related Posts

CVE-2025-20646 | MediaTek MT6890/MT7915/MT7916/MT7981/MT7986 WLAN AP FW out-of-bounds write (MSV-1803)

CVE-2023-51442 | Navidrome up to 0.50.1 Subsonic Endpoint improper authentication

CVE-2024-55539 | Acronis Cyber Protect Cloud Agent up to 39184 on Linux RPM Package risky encryption

CVE-2024-27122 | QNAP Notes Station 3 up to 3.9.5 cross site scripting (qsa-24-21)