top of page
perceptive_background_267k.jpg

Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet Attacks

Published:

8 December 2025 at 09:15:00

Alert date:

8 December 2025 at 09:57:11

Source:

thehackernews.com

Click to open the original link from this advisory

A critical remote code execution vulnerability (CVE-2025-6389) in the Sneeit Framework plugin for WordPress is being actively exploited in the wild. The vulnerability affects all versions prior to and including 8.3, with a CVSS score of 9.8. The issue has been patched in version 8.4 released on August 5, 2025. The plugin has more than 1,700 active installations. The article also mentions ICTBroadcast bug fueling Frost Botnet attacks, indicating multiple ongoing security threats.

Technical details

Mitigation steps:

Affected products:

Sneeit Framework WordPress Plugin
ICTBroadcast

Related links:

https://thehackernews.com/2025/12/sneeit-wordpress-rce-exploited-in-wild.html

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page