CVE-2025-69101

Critical CVSS: 9.8

Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Workreap Core workreap_core allows Authentication Abuse.This issue affects Workreap Core: from n/a through <= 3.4.1.

Vendor

Product

CWE

CWE-288

Yayın Tarihi

2026-01-22 17:16:22

Güncelleme

2026-04-01 15:20:54

Source Identifier

audit@patchstack.com

KEV Date Added

Kategoriler

CWE-288 CRITICAL 2026

Referanslar

https://patchstack.com/database/Wordpress/Plugin/workreap_core/vulnerability/wordpress-workreap-core-plugin-3-4-0-account-takeover-vulnerability?_s_id=cve