exploitDog

CVE-2025-23504

Опубликовано: 08 янв. 2026

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Authentication Bypass Using an Alternate Path or Channel vulnerability in RiceTheme Felan Framework felan-framework allows Authentication Abuse.This issue affects Felan Framework: from n/a through <= 1.1.3.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/felan-framework/vulnerability/wordpress-felan-framework-plugin-1-1-3-account-takeover-vulnerability?_s_id=cve

EPSS

Процентиль: 21%

0.0007

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-288

Связанные уязвимости

GHSA-8r96-x95v-q4mh

CVSS3: 9.8

github

около 1 месяца назад

Authentication Bypass Using an Alternate Path or Channel vulnerability in RiceTheme Felan Framework felan-framework allows Authentication Abuse.This issue affects Felan Framework: from n/a through <= 1.1.3.

EPSS

Процентиль: 21%

0.0007

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-288