← back
CVE-2025-9544

Doppler Forms <= 2.5.1 - Subscriber+ Limited Plugin Installation

CVSS 6.5 MEDIUMEPSS 0.2%
The Doppler Forms WordPress plugin through 2.5.1 registers an AJAX action install_extension without verifying user capabilities or using a nonce. As a result, any authenticated user — including those with the Subscriber role — can install and activate additional Doppler Forms WordPress plugin through 2.5.1 (limited to those whitelisted by the main Doppler Forms WordPress plugin through 2.5.1).
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Affected products
Unknown · Doppler Forms

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://wpscan.com/vulnerability/06312fba-dfc5-47af-afe3-b01d8941acbf/