CVE-2025-6688 | Simple Payment Plugin up to 2.3.8 on WordPress create_user improper authentication

June 26, 2025 Yanac

A vulnerability classified as critical was found in Simple Payment Plugin up to 2.3.8 on WordPress. This vulnerability affects the function create_user. The manipulation leads to improper authentication.

This vulnerability was named CVE-2025-6688. The attack can be initiated remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2024-12827 | DWT Directory & Listing WordPress Theme up to 3.3.6 on WordPress Setting dwt_listing_reset_password password recovery
CVE-2025-47182 | Microsoft Edge input validation