CVE-2025-49348 | Hype Pico Plugin up to 1.0.5 on WordPress authorization

December 9, 2025 Yanac

A vulnerability described as critical has been identified in Hype Pico Plugin up to 1.0.5 on WordPress. This issue affects some unknown processing. Executing manipulation can lead to missing authorization.

The identification of this vulnerability is CVE-2025-49348. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-59132 | Badi Jones Duplicate Content Cure Plugin up to 1.0 on WordPress cross-site request forgery
CVE-2025-67556 | ThemeHigh Advanced FAQ Manager Plugin up to 1.5.2 on WordPress cross site scripting