CVE-2025-12981

The Listee theme for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.1.6. This is due to a broken validation check in the bundled listee-core plugin's user registration function that fails to properly sanitize the userrole parameter. This makes it possible...

CVE-2025-12981

The Listee theme for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.1.6. This is due to a broken validation check in the bundled listee-core plugin's user registration function that fails to properly sanitize the userrole parameter. This makes it possible...

CVE-2025-12981 Listee <= 1.1.6 - Unauthenticated Privilege Escalation

The Listee theme for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.1.6. This is due to a broken validation check in the bundled listee-core plugin's user registration function that fails to properly sanitize the userrole parameter. This makes it possible...

CVE-2019-25237 V-SOL GPON/EPON OLT Platform 2.03 Privilege Escalation via User Role Parameter

V-SOL GPON/EPON OLT Platform v2.03 contains a privilege escalation vulnerability that allows normal users to gain administrative access by manipulating the user role parameter. Attackers can send a crafted HTTP POST request to the user management endpoint with 'userrolemod' set to integer value '...

CVE-2019-25237

Summary: CVE-2019-25237 affects the V-SOL GPON/EPON OLT Platform v2.03, enabling privilege escalation by manipulating the user_role_mod (or similar) parameter via a crafted HTTP POST to the user management endpoint, allowing normal users to gain administrative access. The incident is supported by...

WordPress Orbit Fox 安全漏洞

WordPress Orbit Fox is an open source application for WordPress. A user-centered plugin with an easy-to-use admin panel. A security vulnerability exists in Orbit Fox by ThemeIsle, which can be exploited by an attacker to update the registered default role by submitting the user role parameter...