CVE-2025-2815P2HIGHCVSS 8.8≤ 2025.03.242025-03-28
CVE-2025-2815 [HIGH] CWE-862 CVE-2025-2815: The Administrator Z plugin for WordPress is vulnerable to unauthorized modification of data that can
The Administrator Z plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the adminz_import_backup() function in all versions up to, and including, 2025.03.24. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update
nvd