Javothemes

javothemes

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Javo Core

javo_core

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-0177 1Javothemes 1Javo Core Mar 13, 2025 Mar 8, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The Javo Core plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.0.0.080. This is due to the plugin allowing users who are registering new accounts to set their own role. T...Show more The Javo Core plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.0.0.080. This is due to the plugin allowing users who are registering new accounts to set their own role. This makes it possible for unauthenticated attackers to gain elevated privileges by creating an account with the administrator role.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2025-0177

1Javothemes

1Javo Core

Mar 13, 2025

Mar 8, 2025

N/A· v4

9.8 CRITICAL· v3

N/A· v2

The Javo Core plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.0.0.080. This is due to the plugin allowing users who are registering new accounts to set their own role. This makes it possible for unauthenticated attackers to gain elevated privileges by creating an account with the administrator role.Show less