CVE-2025-12641 | Awesome Support Plugin up to 6.3.6 on WordPress wpas_do_mr_activate_user user_id authorization

A vulnerability marked as critical has been reported in Awesome Support Plugin up to 6.3.6 on WordPress. Affected is the function wpas_do_mr_activate_user. Performing a manipulation of the argument user_id results in missing authorization.

This vulnerability was named CVE-2025-12641. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More