CVE-2025-60070 | The4 Molla Plugin up to 1.5.13 on WordPress code injection

December 18, 2025 Yanac

A vulnerability identified as critical has been detected in The4 Molla Plugin up to 1.5.13 on WordPress. This affects an unknown part. This manipulation causes code injection.

The identification of this vulnerability is CVE-2025-60070. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-64225 | colabrio Stockie Extra Plugin up to 1.2.11 on WordPress Web Page cross site scripting
CVE-2025-67546 | weDevs WP ERP Plugin up to 1.16.6 on WordPress exposure of sensitive system information to an unauthorized control sphere