CVE-2025-60216 | BoldThemes Addison Plugin up to 1.4.2 on WordPress deserialization

October 22, 2025 Yanac

A vulnerability labeled as critical has been found in BoldThemes Addison Plugin up to 1.4.2 on WordPress. Affected is an unknown function. Such manipulation leads to deserialization.

This vulnerability is referenced as CVE-2025-60216. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-60208 | Tusko Trush Advanced Custom Fields Plugin up to 2.0.9 on WordPress cross-site request forgery
CVE-2025-60215 | designthemes Kriya Plugin up to 3.4 on WordPress deserialization