3 matches found
CVE-2025-2103
The SoundRise Music plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on theironMusicajax function in all versions up to, and including, 1.6.11. This makes it possible for authenticated attackers, with...
CVE-2025-2103
creationtimestamp| type| source ---|---|--- 2025-03-14 05:46:50+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7531 2025-03-14 06:41:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkcyxkfp2c2m 2025-03-14 07:48:37+00:00| seen|...
CVE-2025-2103
CVE-2025-2103 – SoundRise Music (WordPress) Vulnerability exists in SoundRise Music plugin for WordPress (all versions <= 1.6.11). A missing capability check in onMusic_ajax() allows authenticated users with subscriber-level access and above to modify arbitrary options, enabling privilege esca...