CVE-2025-9321 | WPCasa Plugin up to 1.4.1 on WordPress api_requests code injection

September 22, 2025 Yanac

A vulnerability described as critical has been identified in WPCasa Plugin up to 1.4.1 on WordPress. Affected by this issue is the function api_requests. Such manipulation leads to code injection.

This vulnerability is listed as CVE-2025-9321. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More

CVE-2025-58919 | Wide Banner Plugin up to 1.0.4 on WordPress authorization
CVE-2025-10380 | Advanced Views Plugin up to 3.7.19 on WordPress special elements used in a template engine