CVE-2025-49372 | HAPPY Plugin up to 1.0.7 on WordPress Remote Code Execution

October 30, 2025 Yanac

A vulnerability classified as critical was found in HAPPY Plugin up to 1.0.7 on WordPress. The affected element is an unknown function. Such manipulation leads to Remote Code Execution.

This vulnerability is uniquely identified as CVE-2025-49372. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-62960 | Construction Light Theme Plugin up to 1.6.7 on WordPress authorization
CVE-2025-62047 | case-addons Plugin up to 1.2.x on WordPress unrestricted upload