3 matches found
WordPress Vchasno Kasa plugin <= 1.0.3 - Unauthenticated Log File Clearing vulnerability
Unauthenticated Log File Clearing vulnerability discovered by Poli in WordPress Plugin Vchasno Kasa versions = 1.0.3...
CVE-2025-6720
creationtimestamp| type| source ---|---|--- 2025-07-19 09:06:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lucmarm5mj2h...
CVE-2025-6720 Vchasno Kasa <= 1.0.3 - Unauthenticated Log File Clearing
The Vchasno Kasa plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the clearalllog function in all versions up to, and including, 1.0.3. This makes it possible for unauthenticated attackers to clear log files...