cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forproject-notebooks project-notebooks

Direction: ascending
Jun 30, 2025

PT Project Notebooks – Take Meeting minutes, create budgets, track task management, and more # CVE-2025-5304

CVE, Research URL

CVE-2025-5304

Home page URL

Security reports for PT Project Notebooks – Take Meeting minutes, create budgets, track task management, and more

Application

PT Project Notebooks – Take Meeting minutes, create budgets, track task management, and more

Date
Jun 28, 2025
Research Description
The PT Project Notebooks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization in the wpnb_pto_new_users_add() function in versions 1.0.0 through 1.1.3. This makes it possible for unauthenticated attackers to elevate their privileges to that of an administrator.
Affected versions
Min -, max -.
Status
vulnerable