Spirit Framework

Vulnerabilities 3Slug spirit-frameworkLatest version 1.0

Minimum safe version

1.2.15

Update to 1.2.15 or later to address 1 fixable vulnerability

Latest available1.0 ⚠ 2 vulnerabilities have no fix
N/A
2025-10-02< 1.2.15

Spirit Framework <= 1.2.14 - Authentication Bypass to Account Takeover and Privilege Escalation

WordfenceCVE
High 7.5 Unfixed
2026-02-02≤ 1.2.13

WordPress Spirit Framework plugin <= 1.2.13 - Local File Inclusion vulnerability

CVEWordfence
High 7.5 Unfixed
2025-09-12≤ 1.2.13

Spirit Framework <= 1.2.13 - Authenticated (Subscriber+) Local File Inclusion

CVEEUVDWordfence