The PT Project Notebooks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization in the wpnb_pto_new_users_add() function in versions 1.0.0 through 1.1.3. This makes it possible for unauthenticated attackers to elevate their privileges to that of an administrator.
WordPress
Privilege Escalation
Authentication Bypass
Pt Project Notebooks
PHP
NVD
CVSS 3.1
9.8
EPSS
0.4%
Deserialization of Untrusted Data vulnerability in Apache Seata (incubating).
Deserialization
Apache
NVD
GitHub
VulDB
CVSS 3.1
9.8
EPSS
0.3%
CVE-2025-53391 is a security vulnerability (CVSS 9.3) that allows a local user. Critical severity with potential for significant impact on affected systems.
Debian
Authentication Bypass
Ubuntu
NVD
CVSS 3.1
9.3
EPSS
0.0%