2 matches found
Exploit for CVE-2025-14364
CVE-2025-14364 Demo Importer Plus = 2.0.8 - Missing Author...
CVE-2025-14364
The Demo Importer Plus plugin for WordPress is vulnerable to unauthorized modification of data, loss of data, and privilege escalation due to a missing capability check on the Ajax::handlerequest function in all versions up to, and including, 2.0.8. This makes it possible for authenticated...