CVE-2025-14892

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

12/02/2026

Last modified:

12/02/2026

Description

The Prime Listing Manager WordPress plugin through 1.1 allows an attacker to gain administrative access without having any kind of account on the targeted site and perform unauthorized actions due to a hardcoded secret.

Impact

References to Advisories, Solutions, and Tools

https://wpscan.com/vulnerability/d12332ec-1d0c-4ff5-94e0-7c4470bdb79c/