CVE-2025-7664 | AL Pack Plugin up to 1.0.2 on WordPress Unauthenticated Premium Feature activate check_activate_permission authorization

A vulnerability has been found in AL Pack Plugin up to 1.0.2 on WordPress and classified as critical. This vulnerability affects the function check_activate_permission of the file /wp-json/presslearn/v1/activate of the component Unauthenticated Premium Feature Handler. The manipulation leads to missing authorization.

This vulnerability was named CVE-2025-7664. The attack can be initiated remotely. There is no exploit available.VulDB Recent EntriesRead More