cbcvebase.
CVE-2025-1325
published 2025-03-08

CVE-2025-1325: The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to arbitrary shortcode execution due to a missing capability check on…

PriorityP338medium6.3CVSS 3.1
AVNACLPRLUINSUCLILAL
EPSS
0.31%
22.7th percentile
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to arbitrary shortcode execution due to a missing capability check on the 'rcl_preview_post' AJAX endpoint in all versions up to, and including, 16.26.10. This makes it possible for authenticated attackers, with Subscriber-level access and above, to execute arbitrary shortcodes.

Affected

20 ranges
VendorProductVersion rangeFixed in
msrcazl3_cloud-hypervisor-cvm_38.0.72-2_on_azure_linux_3.0
msrcazl3_cloud-hypervisor-cvm_38.0.72.2-1_on_azure_linux_3.0
msrcazl3_edk2_20240524git3e722403cd16-8_on_azure_linux_3.0
msrcazl3_nodejs_20.10.0-2_on_azure_linux_3.0
msrcazl3_nodejs_20.14.0-1_on_azure_linux_3.0
msrcazl3_openssl_3.1.4-9_on_azure_linux_3.0
msrcazl3_openssl_3.3.0-1_on_azure_linux_3.0
msrcazl3_qemu_8.2.0-16_on_azure_linux_3.0
msrcazure_linux_3.0_arm
msrcazure_linux_3.0_x64
msrccbl2_cloud-hypervisor-cvm_38.0.72-1_on_cbl_mariner_2.0
msrccbl2_cloud-hypervisor-cvm_38.0.72.2-1_on_cbl_mariner_2.0
msrccbl2_hvloader_1.0.1-5_on_cbl_mariner_2.0
msrccbl2_hvloader_1.0.1-6_on_cbl_mariner_2.0
msrccbl2_nodejs18_18.18.2-7_on_cbl_mariner_2.0
msrccbl2_openssl_1.1.1k-30_on_cbl_mariner_2.0
msrccbl2_openssl_1.1.1k-36_on_cbl_mariner_2.0
msrccbl_mariner_2.0_arm
msrccbl_mariner_2.0_x64
plechevandreywp-recall< 16.26.1216.26.12

CVSS provenance

nvdv3.16.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
vendor_redhat7.5HIGH
vendor_msrc5.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.