CVE-2025-5815 in Traffic Monitor Plugin
要約
〜によって MITRE • 2025年06月13日
The Traffic Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the tfcm_maybe_set_bot_flags() function in all versions up to, and including, 3.2.2. This makes it possible for unauthenticated attackers to disabled bot logging.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.