CVE-2025-31882
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Apr 1, 2025
CWE ID 862
Summary
CVE-2025-31882 is a Missing Authorization vulnerability affecting the WPWebinarSystem WebinarPress plugin. This issue arises due to incorrectly configured access control security levels, allowing unauthorized access and potential exploitation. Affected versions of WebinarPress range from n/a to 1.33.27. Successful exploitation could result in unauthorized access to sensitive data or functionality within the plugin. It is recommended that users update to the latest secure version of WebinarPress to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- WordPress