CVE-2025-5060 | Bravis-Themes Bravis User Plugin up to 1.0.0 on WordPress facebook_ajax_login_callback authentication bypass

A vulnerability was found in Bravis-Themes Bravis User Plugin up to 1.0.0 on WordPress. It has been declared as critical. Impacted is the function facebook_ajax_login_callback. Such manipulation leads to authentication bypass using alternate channel.

This vulnerability is traded as CVE-2025-5060. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More