VYPR

Ace Post Type Builder

by WordPress

Source repositories

CVEs (1)

  • CVE-2025-13405MedNov 25, 2025
    risk 0.27cvss 5.3epss 0.00

    The Ace Post Type Builder plugin for WordPress is vulnerable to unauthorized custom taxonomy deletion due to missing authorization validation on the cptb_delete_custom_taxonomy() function in all versions up to, and including, 1.9. This makes it possible for authenticated…