2 matches found
CVE-2025-14364
The Demo Importer Plus plugin for WordPress is vulnerable to unauthorized modification of data, loss of data, and privilege escalation due to a missing capability check on the Ajax::handlerequest function in all versions up to, and including, 2.0.8. This makes it possible for authenticated...
CVE-2025-14364
CVE-2025-14364 affects the WordPress Demo Importer Plus plugin (versions