CVE-2025-48138

Missing Authorization vulnerability in berthaai BERTHA AI allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects BERTHA AI: from n/a through 1.12.11.
Configurations

Configuration 1 (hide)

cpe:2.3:a:bertha:bertha_ai:*:*:*:*:*:wordpress:*:*

History

30 May 2025, 15:19

Type Values Removed Values Added
First Time Bertha
Bertha bertha Ai
CPE cpe:2.3:a:bertha:bertha_ai:*:*:*:*:*:wordpress:*:*
References () https://patchstack.com/database/wordpress/plugin/bertha-ai-free/vulnerability/wordpress-bertha-ai-1-12-11-broken-access-control-vulnerability?_s_id=cve - () https://patchstack.com/database/wordpress/plugin/bertha-ai-free/vulnerability/wordpress-bertha-ai-1-12-11-broken-access-control-vulnerability?_s_id=cve - Third Party Advisory

19 May 2025, 13:35

Type Values Removed Values Added
Summary
  • (es) La vulnerabilidad de falta de autorización en berthaai BERTHA AI permite explotar niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta a BERTHA AI desde n/d hasta la versión 1.12.11.

16 May 2025, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-05-16 16:15

Updated : 2025-05-30 15:19


NVD link : CVE-2025-48138

Mitre link : CVE-2025-48138

CVE.ORG link : CVE-2025-48138


JSON object : View

Products Affected

bertha

  • bertha_ai
CWE
CWE-862

Missing Authorization