8 matches found
WordPress SureTriggers Plugin < 1.0.83 Privilege Escalation Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:suretriggers:suretriggers"; if description...
OttoKit WordPress Plugin with 100K+ Installs Hit by Exploits Targeting Multiple Flaws
A second security flaw impacting the OttoKit formerly SureTriggers WordPress plugin has come under active exploitation in the wild. The vulnerability, tracked as CVE-2025-27007 CVSS score: 9.8, is a privilege escalation bug impacting all versions of the plugin prior to and including version 1.0.8...
CVE-2025-27007
Incorrect Privilege Assignment vulnerability in Brainstorm Force OttoKit suretriggers allows Privilege Escalation.This issue affects OttoKit: from n/a through = 1.0.82...
CVE-2025-27007
creationtimestamp| type| source ---|---|--- 2025-05-01 11:14:47+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14257 2025-05-01 14:00:35+00:00| published-proof-of-concept| Telegram/WavE4TZalmMZH7ia3WHjEDQ1oei-w86-OmAcu597Ww1-5E 2025-05-01 14:49:50+00:00| seen| https://t.me/cvedetector/24205...
CVE-2025-27007 WordPress SureTriggers <= 1.0.82 - Privilege Escalation Vulnerability
Incorrect Privilege Assignment vulnerability in Brainstorm Force OttoKit suretriggers allows Privilege Escalation.This issue affects OttoKit: from n/a through = 1.0.82...
CVE-2025-27007 WordPress SureTriggers <= 1.0.82 - Privilege Escalation Vulnerability
Incorrect Privilege Assignment vulnerability in Brainstorm Force OttoKit suretriggers allows Privilege Escalation.This issue affects OttoKit: from n/a through = 1.0.82...
CVE-2025-27007
CVE-2025-27007 affects WordPress plugin SureTriggers (also called OttoKit) up to version 1.0.82. The vulnerability is an Incorrect Privilege Assignment that allows unauthenticated privilege escalation via the SureTriggers REST API endpoints, enabling an attacker to create an administrator account...
WordPress SureTriggers <= 1.0.82 - Privilege Escalation Vulnerability
Privilege Escalation Vulnerability discovered by Denver Jackson Patchstack Alliance in WordPress Plugin OttoKit versions = 1.0.82...