CVE-2025-12174 | Directorist Plugin up to 8.5.2 on WordPress authorization

November 18, 2025 Yanac

A vulnerability was found in Directorist Plugin up to 8.5.2 on WordPress. It has been declared as critical. This affects an unknown part. Executing manipulation can lead to missing authorization.

The identification of this vulnerability is CVE-2025-12174. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-12814 | SiteSEO Plugin up to 1.3.2 on WordPress Setting siteseo_reset_settings
CVE-2025-12822 | WP Login and Register using JWT Plugin up to 3.0.0 on WordPress API Key mo_jwt_generate_new_api_key authorization