CVE-2025-11007 | CE21 Suite Plugin up to 2.3.1 on WordPress Setting authorization

A vulnerability labeled as critical has been found in CE21 Suite Plugin up to 2.3.1 on WordPress. Affected is the function wp_ajax_nopriv_ce21_single_sign_on_save_api_settings of the component Setting Handler. Such manipulation leads to missing authorization.

This vulnerability is documented as CVE-2025-11007. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More