CVE-2025-5814

by Fred · 07/06/2025

The Profiler – What Slowing Down Your WP plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wpsd_plugin_control() function in all versions up to, and including, 1.0.0. This makes it possible for unauthenticated attackers to reactivate previously deactivated plugins after accessing the “Profiler” page.

Assigner : cve-request@wordfence.com

More information : https://plugins.trac.wordpress.org/browser/profiler-what-slowing-down/trunk/actions.php#L31

CVE-2025-5814

Similar

Recent Posts

Categories

CVE-2025-5814

Share this:

Similar

Recent Posts

Categories

Tags