exploitDog

CVE-2025-46255

Опубликовано: 05 янв. 2026

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Missing Authorization vulnerability in Marketing Fire LLC LoginWP - Pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LoginWP - Pro: from n/a through 4.0.8.5.

Ссылки

https://patchstack.com/database/wordpress/plugin/loginwp-pro/vulnerability/wordpress-loginwp-pro-plugin-4-0-8-5-settings-change-vulnerability?_s_id=cve

EPSS

Процентиль: 6%

0.00025

Низкий

7.5 High

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-8gx3-5q9g-5g8j

CVSS3: 7.5

github

около 1 месяца назад

Missing Authorization vulnerability in Marketing Fire LLC LoginWP - Pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LoginWP - Pro: from n/a through 4.0.8.5.

EPSS

Процентиль: 6%

0.00025

Низкий

7.5 High

CVSS3

Дефекты

CWE-862