CVE-2025-11174 | WordPress Plugin Vulnerability

Status

This vulnerability has been assigned CVE-2025-11174 and is currently pending full publication details from the National Vulnerability Database (NVD). The vulnerability was discovered and responsibly disclosed by Kai Aizen (SnailSploit).

Description

Full technical details will be published once the vulnerability information is released by NVD and the affected software vendor has had adequate time to patch and notify users.

Timeline

Discovery: Vulnerability discovered during WordPress plugin security assessment
Disclosure: Responsibly disclosed to plugin developer
CVE Assignment: CVE-2025-11174 assigned
Status: Awaiting NVD publication

Updates

This page will be updated with complete technical details, proof of concept, and remediation guidance once the information is publicly available through NVD.

For the most current information, check the official NVD entry or contact kai@snailsploit.com.

References

Wordfence Threat Intelligence
NVD Entry
MITRE Entry
GitHub PoC