exploitDog

CVE-2025-49973

Опубликовано: 20 июн. 2025

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

Missing Authorization vulnerability in GrandPlugins Image Sizes Controller, Create Custom Image Sizes, Disable Image Sizes allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Image Sizes Controller, Create Custom Image Sizes, Disable Image Sizes: from n/a through 1.0.9.

Ссылки

https://patchstack.com/database/wordpress/plugin/image-sizes-controller/vulnerability/wordpress-image-sizes-controller-create-custom-image-sizes-disable-image-sizes-plugin-1-0-9-broken-access-control-vulnerability?_s_id=cve

EPSS

Процентиль: 11%

0.00039

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-xvw6-2phf-v6gr

CVSS3: 4.3

github

2 месяца назад

Missing Authorization vulnerability in GrandPlugins Image Sizes Controller, Create Custom Image Sizes, Disable Image Sizes allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Image Sizes Controller, Create Custom Image Sizes, Disable Image Sizes: from n/a through 1.0.9.

EPSS

Процентиль: 11%

0.00039

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862