Critical exposure
CVE-2025-13615 The StreamTube Core plugin for WordPress is vulnerable to Arbitrary User Password Change in versi...
- CVSS 9.8
- Internet-facing CMS deployments affected
New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.