Recently Disclosed SureTriggers Critical Privilege Escalation Vulnerability Under Active Exploitation - #CVE-2025-27007
A critical vulnerability (CVE-2025-27007) has been discovered in the OttoKit WordPress plugin, affecting versions up to 1.0.82. This flaw allows unauthenticated attackers to gain administrative access to websites due to inadequate capability checks and authentication verification in the create_wp_connection() function. Active exploitation began on May 2, 2025, with mass exploitation following on May 4. The Wordfence Firewall has blocked over 2,400 exploit attempts. Indicators of compromise include unauthorized admin accounts and specific REST API endpoint access logs. A forced update to version 1.0.83 has been deployed to address the vulnerability. Website owners are strongly advised to verify their sites are running the patched version immediately to mitigate potential risks.