CVE-2025-13313 | CRM Memberships Plugin up to 2.5 on WordPress AJAX Endpoint ntzcrm_changepassword authorization

A vulnerability, which was classified as critical, has been found in CRM Memberships Plugin up to 2.5 on WordPress. This issue affects the function ntzcrm_changepassword of the component AJAX Endpoint. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2025-13313. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More