CVE-2025-13149 | PublishPress Schedule Post Changes with PublishPress Future Plugin REST API Endpoint saveFutureActionData authorization

A vulnerability identified as problematic has been detected in PublishPress Schedule Post Changes with PublishPress Future Plugin up to 4.9.1 on WordPress. This issue affects the function saveFutureActionData of the component REST API Endpoint. This manipulation causes missing authorization.

The identification of this vulnerability is CVE-2025-13149. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More