Lucene search
K

CVE-2025-5304

🗓️ 28 Jun 2025 05:29:51Reported by WordfenceType 
cve
 cve
🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 39 Views🌐 WEB

PT Project Notebooks plugin vulnerable to privilege escalation due to missing authorization in function.

Related
Detection
Affected
Refs
Paths
Social
NVD
Vulners
Node
ptofficept_project_notebooksRange1.0.01.1.3wordpress
[
  {
    "vendor": "blafoley",
    "product": "PT Project Notebooks – Take Meeting minutes, create budgets, track task management, and more",
    "versions": [
      {
        "version": "1.0.0",
        "status": "affected",
        "lessThanOrEqual": "1.1.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]
ParameterPositionPathDescriptionCWE
actionrequest body/wp-admin/admin-ajax.phpPrivilege escalation via unauthenticated AJAX action wpnb_pto_new_users_add exposed by the plugin (CWE-862).CWE-862
noncerequest body/wp-admin/admin-ajax.phpPrivilege escalation via unauthenticated AJAX action wpnb_pto_new_users_add exposed by the plugin (CWE-862).CWE-862
idsrequest body/wp-admin/admin-ajax.phpPrivilege escalation via unauthenticated AJAX action wpnb_pto_new_users_add exposed by the plugin (CWE-862).CWE-862
user_typerequest body/wp-admin/admin-ajax.phpPrivilege escalation via unauthenticated AJAX action wpnb_pto_new_users_add exposed by the plugin (CWE-862).CWE-862

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 09:47Current
6.6Medium risk
Vulners AI Score6.6
CVSS 3.19.8
EPSS0.00583
SSVC
39