CVE-2025-13794 | Auto Featured Image Plugin up to 4.2.1 on WordPress Thumbnail bulk_action_generate_handler authorization

A vulnerability classified as problematic has been found in Auto Featured Image Plugin up to 4.2.1 on WordPress. Impacted is the function bulk_action_generate_handler of the component Thumbnail Handler. This manipulation causes missing authorization.

This vulnerability is tracked as CVE-2025-13794. The attack is possible to be carried out remotely. No exploit exists.

If you want to get best quality of vulnerability data, you may have to visit VulDB.VulDB Recent EntriesRead More