Sign in Get started

← All advisories

Medium severity6.5NVD Advisory· Published Apr 10, 2026· Updated Apr 15, 2026

CVE-2025-14545

CVE-2025-14545

Description

The YML for Yandex Market WordPress plugin before 5.0.26 is vulnerable to Remote Code Execution via the feed generation process.

Affected products

1

WordPress/Yml For Yandex Marketinferred
Range: <5.0.26
Package: https://wordpress.org/plugins/yml-for-yandex-market

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

wpscan.com/vulnerability/9bb1a4ca-976c-461d-82de-8a3b04a56fbc/nvd

News mentions

0

No linked articles in our index yet.