WP User Profile Avatar, CVE-2025-49980
- CVE, Research URL
- Home page URL
- Application
- Published on
- Jun 20, 2025
- Research Description
- Missing Authorization vulnerability in WP Event Manager WP User Profile Avatar allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP User Profile Avatar: from n/a through 1.0.6.
- Affected versions
-
Min -, max 1.0.6.
- Status
-
vulnerable
Previous vulnerability researches |
---|
WordPress Mega Menu Block (CVE-2025-48258) , May 21, 2025 |