CVE-2025-3852 | WPshop Plugin up to 2.6.0 on WordPress update privilege escalation

May 6, 2025 Yanac

A vulnerability has been found in WPshop Plugin up to 2.6.0 on WordPress and classified as critical. Affected by this vulnerability is the function update. The manipulation leads to privilege escalation.

This vulnerability is known as CVE-2025-3852. The attack can be launched remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-3844 | PeproDev Ultimate Profile Solutions Plugin up to 7.5.2 on WordPress handel_ajax_req improper authentication
CVE-2025-4335 | Woocommerce Multiple Addresses Plugin up to 1.0.7.1 on WordPress save_multiple_shipping_addresses privilege escalation