CVE-2025-11260 | WP Headless CMS Framework Plugin up to 1.15 on WordPress Authorization Header protection mechanism

A vulnerability described as critical has been identified in WP Headless CMS Framework Plugin up to 1.15 on WordPress. The affected element is an unknown function of the component Authorization Header Handler. The manipulation results in protection mechanism failure.

This vulnerability is identified as CVE-2025-11260. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More