Nigerian website owners have been warned to be weary of security vulnerabilities in the Jupiter X Core plugin for WordPress.
The warning was handed over by the National Information Technology Development Agency (NITDA), via its official X account on Wednesday.
According to the agency, the vulnerability, identified as CVE-2025-0366, poses a significant cybersecurity risk, potentially allowing attackers to take control of affected websites without authentication.
A security advisory from the Computer Emergency Readiness and Response Team Nigeria (CERNT.NG) noted that the flaw is an unauthenticated privilege escalation vulnerability,”meaning attackers can gain administrative access or execute arbitrary code on websites using this plugin.
A critical security flaw has been discovered in the Jupiter X Core plugin for WordPress, affecting websites using this popular theme framework,” the statement said.
