2 matches found
CVE-2025-15030
creationtimestamp| type| source ---|---|--- 2026-02-02 17:15:14+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdvdvobvpn2a 2026-02-04 21:02:32+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3me2rjtvfle2h 2026-04-18 11:00:12+00:00|...
CVE-2025-15030 User Profile Builder < 3.15.2 - Unauthenticated Arbitrary Password Reset
The User Profile Builder WordPress plugin before 3.15.2 does not have a proper password reset process, allowing a few unauthenticated requests to reset the password of any user by knowing their username, such as administrator ones, and therefore gain access to their account...