3 matches found
CVE-2025-7822
The WP Wallcreeper plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the adminnotices hook in all versions up to, and including, 1.6.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to enable...
CVE-2025-7822 WP Wallcreeper <= 1.6.1 - Missing Authorization to Authenticated (Susbcriber+) Cache Enable/Disable
The WP Wallcreeper plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the adminnotices hook in all versions up to, and including, 1.6.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to enable...
WordPress WP Wallcreeper plugin <= 1.6.1 - Missing Authorization to Authenticated (Susbcriber+) Cache Enable/Disable vulnerability
Missing Authorization to Authenticated Susbcriber+ Cache Enable/Disable vulnerability discovered by ch4r0n in WordPress Plugin WP Wallcreeper versions = 1.6.1...