CVE-2025-1570 | wpwax Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings password recovery

A vulnerability was found in wpwax Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings up to 8.1 on WordPress. It has been classified as problematic. This affects the function directorist_generate_password_reset_pin_code/reset_user_password. The manipulation leads to weak password recovery.

This vulnerability is uniquely identified as CVE-2025-1570. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More