CVE-2025-5304 – PT Project Notebooks WordPress Privilege Escalation

CVE ID : CVE-2025-5304

Published : June 28, 2025, 6:15 a.m. | 43 minutes ago

Description : The PT Project Notebooks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization in the wpnb_pto_new_users_add() function in versions 1.0.0 through 1.1.3. This makes it possible for unauthenticated attackers to elevate their privileges to that of an administrator.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…