VYPR

Woffice CRM

by WordPress

CVEs (1)

  • CVE-2025-2798CriApr 4, 2025
    risk 0.64cvss 9.8epss 0.01

    The Woffice CRM theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 5.4.21. This is due to a misconfiguration of excluded roles during registration. This makes it possible for unauthenticated attackers to register with an…