2 matches found
CVE-2025-13559
creationtimestamp| type| source ---|---|--- 2025-11-25 06:03:22+00:00| seen| https://infosec.exchange/users/offseq/statuses/115608820181676028 2025-11-25 06:03:23+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m6go6snenx24 2025-11-25 12:33:27+00:00| published-proof-of-concept|...
CVE-2025-13559
Affected software: WordPress EduKart Pro plugin (versions up to 1.0.3). Root cause: The function edukart_pro_register_user_front_end does not restrict permissible registration roles, enabling an unauthenticated user to register as an administrator. Impact: Privilege escalation to full administrat...