CVE-2025-6027 | Ace User Management Plugin up to 2.0.3 on WordPress Password Reset Token password recovery

A vulnerability described as critical has been identified in Ace User Management Plugin up to 2.0.3 on WordPress. This impacts an unknown function of the component Password Reset Token Handler. Executing manipulation can lead to weak password recovery.

This vulnerability is tracked as CVE-2025-6027. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More