2 matches found
CVE-2025-27007
CVE-2025-27007 affects WordPress plugin SureTriggers (also called OttoKit) up to version 1.0.82. The vulnerability is an Incorrect Privilege Assignment that allows unauthenticated privilege escalation via the SureTriggers REST API endpoints, enabling an attacker to create an administrator account...
PT-2025-18381
Name of the Vulnerable Software and Affected Versions Brainstorm Force SureTriggers versions 1.0.0 through 1.0.82 Description The issue is related to an incorrect privilege assignment vulnerability in Brainstorm Force SureTriggers, allowing privilege escalation. This vulnerability can be exploite...