CVE-2025-5394 | Alone Plugin up to 7.8.3 on WordPress alone_import_pack_install_plugin authorization

July 14, 2025 Yanac

A vulnerability classified as critical was found in Alone Plugin up to 7.8.3 on WordPress. This vulnerability affects the function alone_import_pack_install_plugin. The manipulation leads to missing authorization.

This vulnerability was named CVE-2025-5394. The attack can be initiated remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-27582 | One Identity Password Manager up to 5.14.3 window.print inclusion of functionality from untrusted control sphere
CVE-2025-5393 | Alone Plugin up to 7.8.3 on WordPress alone_import_pack_restore_data authorization