Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/13 9:18 a.m.4 views

CVE-2025-0180

The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 4.7. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on...

9.8CVSS7.1AI score0.00503EPSS
Exploits0References1
NVD
NVD
added 2025/02/11 7:15 a.m.5 views

CVE-2025-0180

The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 4.7. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on...

9.8CVSS0.00503EPSS
Exploits0References2
Circl
Circl
added 2025/02/11 6:55 a.m.7 views

CVE-2025-0180

creationtimestamp| type| source ---|---|--- 2025-02-11 06:55:56+00:00| seen| https://infosec.exchange/users/cve/statuses/113983943846942661 2025-02-11 07:15:46+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhv4fz4f2423 2025-02-11 08:19:49+00:00| seen|...

9.8CVSS8.7AI score0.00503EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/02/11 6:54 a.m.11 views

CVE-2025-0180 WP Foodbakery <= 4.7 - Unauthenticated Privilege Escalation in foodbakery_registration_validation

The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 4.7. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on...

9.8CVSS0.00503EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/02/11 6:54 a.m.3 views

CVE-2025-0180 WP Foodbakery <= 4.7 - Unauthenticated Privilege Escalation in foodbakery_registration_validation

The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This makes it possible for unauthenticated attackers to register on...

9.8CVSS9.8AI score0.00503EPSS
Exploits0References2
Rows per page
Query Builder