CVE-2025-13950 | OneSignal Plugin up to 3.6.1 on WordPress Setting authorization

A vulnerability has been found in OneSignal Plugin up to 3.6.1 on WordPress and classified as problematic. Impacted is an unknown function of the component Setting Handler. This manipulation causes missing authorization.

This vulnerability is handled as CVE-2025-13950. The attack can be initiated remotely. There is not any exploit available.

If you want to get best quality of vulnerability data, you may have to visit VulDB.VulDB Recent EntriesRead More