3 matches found
WordPress Flex Store Users plugin <= 1.1.0 - Unauthenticated Privilege Escalation vulnerability
Unauthenticated Privilege Escalation vulnerability discovered by シルAsuna in WordPress Plugin Flex Store Users versions = 1.1.0...
CVE-2025-13619
The Flex Store Users plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.0. This is due to the 'fsUserHandle::signup' and the 'fsSellerRole::addroleseller' functions not restricting what user roles a user can register with. This makes it possible f...
CVE-2025-13619
creationtimestamp| type| source ---|---|--- 2025-12-20 07:54:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mafpzvzzaa2y 2025-12-20 08:05:39+00:00| seen| https://infosec.exchange/users/offseq/statuses/115750858781966228 2025-12-20 08:05:42+00:00| seen|...