Critical severity9.8NVD Advisory· Published Sep 6, 2025· Updated Apr 15, 2026
CVE-2025-8359
CVE-2025-8359
Description
The AdForest theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 6.0.9. This is due to the plugin not properly verifying a user's identity prior to authenticating them. This makes it possible for unauthenticated attackers to log in as other users, including administrators, without access to a password.
Affected products
2Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.