Medium severity5.3NVD Advisory· Published Jul 19, 2025· Updated Jun 17, 2026
CVE-2025-6720
CVE-2025-6720
Description
The Vchasno Kasa plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the clear_all_log() function in all versions up to, and including, 1.0.3. This makes it possible for unauthenticated attackers to clear log files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.0.3
- Range: <=1.0.3
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.