← back
CVE-2025-27007

WordPress SureTriggers <= 1.0.82 - Privilege Escalation Vulnerability

CVSS 9.8 CRITICALEPSS 50.2%CWE-266
Incorrect Privilege Assignment vulnerability in Brainstorm Force OttoKit suretriggers allows Privilege Escalation.This issue affects OttoKit: from n/a through <= 1.0.82.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Brainstorm Force · OttoKit
public PoCs found2
githubgithub.com/absholi7ly/CVE-2025-27007-OttoKit-exploit2exploitdbwww.exploit-db.com/exploits/52286unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://patchstack.com/database/Wordpress/Plugin/suretriggers/vulnerability/wordpress-suretriggers-1-0-82-privilege-escalation-vulnerability?_s_id=cve