How severe is CVE-2025-46255?

CVE-2025-46255 has a CVSS v3 score of 7.5 (HIGH).

CVE-2025-46255

7.5HIGH

Missing Authorization vulnerability in Marketing Fire LLC LoginWP - Pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LoginWP - Pro: from n/a through 4.0.8.5.

Publicado: 1/5/2026Actualizado: 1/8/2026

Descripción

Missing Authorization vulnerability in Marketing Fire LLC LoginWP - Pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects LoginWP - Pro: from n/a through 4.0.8.5.

Análisis IAImpulsado por IA

Referencias

https://vdp.patchstack.com/database/wordpress/plugin/loginwp-pro/vulnerability/wordpress-loginwp-pro-plugin-4-0-8-5-settings-change-vulnerability?_s_id=cve