GHSA-v9q2-7r8q-p2qm

Опубликовано: 27 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Missing Authorization vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Podlove Web Player: from n/a through <= 5.9.1.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2025-62908
https://vdp.patchstack.com/database/Wordpress/Plugin/podlove-web-player/vulnerability/wordpress-podlove-web-player-plugin-5-9-1-broken-access-control-vulnerability
https://vdp.patchstack.com/database/Wordpress/Plugin/podlove-web-player/vulnerability/wordpress-podlove-web-player-plugin-5-9-1-broken-access-control-vulnerability?_s_id=cve

9.8 Critical

CVSS3

CVE ID

CVE-2025-62908

Дефекты

CWE-862

Связанные уязвимости

CVE-2025-62908

nvd

3 месяца назад

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

9.8 Critical

CVSS3

CVE ID

CVE-2025-62908

Дефекты

CWE-862