CVE-2025-4797
The CVE CVE-2025-4797 concerns the Golo - City Travel Guide WordPress Theme. A privilege-escalation vulnerability in which the plugin fails to validate a user’s identity before setting an authorization cookie allows unauthenticated attackers to log in as arbitrary users (including admins) if they...