CVE-2025-66072 | Stiofan UsersWP Plugin up to 1.2.47 on WordPress authorization

November 21, 2025 Yanac

A vulnerability described as critical has been identified in Stiofan UsersWP Plugin up to 1.2.47 on WordPress. Affected by this vulnerability is an unknown functionality. Such manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2025-66072. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-66075 | WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy Consent Plugin authorization
CVE-2025-66065 | Jegstudio Gutenverse Plugin up to 3.2.1 on WordPress authorization