CVE-2025-3491 | Add Custom Page Template Plugin up to 2.0.1 on WordPress Setting acpt_validate_setting template_name code injection

A vulnerability has been found in Add Custom Page Template Plugin up to 2.0.1 on WordPress and classified as critical. Affected by this vulnerability is the function acpt_validate_setting of the component Setting Handler. The manipulation of the argument template_name leads to code injection.

This vulnerability is known as CVE-2025-3491. The attack can be launched remotely. There is no exploit available.VulDB Recent EntriesRead More