CVE-2025-60245 | WP User Manager Plugin up to 2.9.12 on WordPress deserialization

November 6, 2025 Yanac

A vulnerability described as critical has been identified in WP User Manager Plugin up to 2.9.12 on WordPress. Affected by this issue is some unknown functionality. Executing manipulation can lead to deserialization.

This vulnerability is registered as CVE-2025-60245. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-62064 | Elated-Themes Search & Go Plugin up to 2.7 on WordPress authentication bypass
CVE-2025-60239 | Codexpert CoSchool LMS Plugin up to 1.4.3 on WordPress sql injection