cleantalk
Vulnerabilities and Security Researches

Listly: Listicles For WordPress, CVE-2025-5811

CVE, Research URL

CVE-2025-5811

Home page URL

Security reports for Listly: Listicles For WordPress

Application

Listly: Listicles For WordPress

Published on
Jul 18, 2025
Research Description
The Listly: Listicles For WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the Init() function in all versions up to, and including, 2.7. This makes it possible for unauthenticated attackers to delete arbitrary transient values on the WordPress site.
Affected versions
Min -, max 2.7.
Status
vulnerable
Previous vulnerability researches
WP Frontend Profile (CVE-2023-51483) , Jun 10, 2024
WP Frontend Profile (CVE-2019-15111) , Jun 10, 2024
WP Frontend Profile (CVE-2019-15110) , Jun 10, 2024
WP Frontend Profile (CVE-2022-4974) , Nov 16, 2024
New vulnerability
DB Backup (CVE-2025-50031) , Jul 19, 2025
Vchasno Kasa (CVE-2025-6720) , Jul 19, 2025
Vchasno Kasa (CVE-2025-6721) , Jul 19, 2025
Media Library Assistant (CVE-2025-7035) , Jul 19, 2025
Wallet System for WooCommerce – Digital Wallet, Cashback Rewards, Recharge User Wallets, View Transaction History (CVE-2025-54041) , Jul 19, 2025