Nigerian website owners have been cautioned to be aware of security vulnerabilities in the Jupiter X Core plugin for WordPress.
This warning was issued by the National Information Technology Development Agency (NITDA) through its official X account on Wednesday.
According to the agency, the vulnerability, identified as CVE-2025-0366, poses a significant cybersecurity risk, potentially allowing attackers to take control of affected websites without authentication.
A security advisory from the Computer Emergency Readiness and Response Team Nigeria (CERNT.NG) noted that the flaw is an “unauthenticated privilege escalation vulnerability,” meaning attackers can gain administrative access or execute arbitrary code on websites using this plugin.
“A critical security flaw has been discovered in the Jupiter X Core plugin for WordPress, affecting websites using this popular theme framework,” the statement said.
