CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

CNNVD•added 2026/04/08 12:0 a.m.•2 views

WordPress plugin Freeio 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

7.5CVSS5.8AI score0.00147EPSS

Exploits0References1

Wordfence Blog•added 2025/10/29 7:14 p.m.•5 views

Attackers Actively Exploiting Critical Vulnerability in WP Freeio Plugin

On September 25th, 2025, we received a submission for a Privilege Escalation vulnerability in WP Freeio, a WordPress plugin bundled in the Freeio premium theme with more than 1,700 sales. This vulnerability makes it possible for an unauthenticated attacker to grant themselves administrative...

9.8CVSS6.8AI score0.00198EPSS

Exploits0

EUVD•added 2025/10/11 9:30 a.m.•1 views

EUVD-2025-33819

The WP Freeio plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.21. This is due to the processregister function not restricting what user roles a user can register with. This makes it possible for unauthenticated attackers to supply the...

9.8CVSS5.6AI score0.00198EPSS

Exploits0References3

NVD•added 2025/10/11 8:15 a.m.•2 views

CVE-2025-11533

9.8CVSS0.00198EPSS

Exploits0References2

CVE•added 2025/10/11 7:25 a.m.•14 views

CVE-2025-11533

CVE-2025-11533 (WP Freeio, WordPress) — Privilege escalation in WP Freeio is caused by the process_register() function not restricting user registration roles, allowing unauthenticated users to register as ‘administrator’ and gain admin access in all versions up to 1.2.21. The vulnerability is ra...

9.8CVSS5.7AI score0.00198EPSS

In wildExploits0References2