CVE-2025-14892CRITICAL 9.8EPSS p28.3%

CVE-2025-14892CVE-2025-14892

Description

The Prime Listing Manager WordPress plugin through 1.1 allows an attacker to gain administrative access without having any kind of account on the targeted site and perform unauthorized actions due to a hardcoded secret.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.37% probability of exploitation · percentile 28.3% · 2026-06-19T12:03:05Z
Published2026-02-12
Last modified2026-04-15

References

  1. https://wpscan.com/vulnerability/d12332ec-1d0c-4ff5-94e0-7c4470bdb79c/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-14975
CVE
CVE-2025-6994
CVE
CVE-2025-1653
CVE
CVE-2025-12882
CVE
CVE-2025-14996
CVE
CVE-2025-13538
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.