CVE-2025-1564 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a us…
Critical CVSS: 9.8

CVE-2025-1564

The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated attackers to log in as any user, including administrators and take over access to their account.
Vendor
-
Product
-
CWE
CWE-288
Yayın Tarihi
2025-03-01 08:15:34
Güncelleme
2025-03-01 08:15:34
Source Identifier
security@wordfence.com
KEV Date Added
-

Kategoriler

CWE-288 CRITICAL 2025

Referanslar

https://themeforest.net/item/setsail-travel-agency-theme/22832625 https://www.wordfence.com/threat-intel/vulnerabilities/id/c2c2385e-0d1e-435a-9b82-972964084148?source=cve