VYPR

Flex Store Users

by WordPress

CVEs (1)

  • CVE-2025-13619CriDec 20, 2025
    risk 0.64cvss 9.8epss 0.00

    The Flex Store Users plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.0. This is due to the 'fsUserHandle::signup' and the 'fsSellerRole::add_role_seller' functions not restricting what user roles a user can register with. This…