CVE-2025-6990 | Kallyas Plugin up to 4.24.0 on WordPress TH_PhpCode privilege escalation

October 31, 2025 Yanac

A vulnerability has been found in Kallyas Plugin up to 4.24.0 on WordPress and classified as critical. The impacted element is the function TH_PhpCode. This manipulation causes privilege escalation.

This vulnerability is registered as CVE-2025-6990. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-11755 | WP Delicious Plugin up to 1.9.0 on WordPress unrestricted upload
CVE-2025-6075 | Python CPython up to 3.14.x os.path.expandvars resource consumption (Issue 136065)