CVE-2025-49973

Missing Authorization vulnerability in GrandPlugins Image Sizes Controller, Create Custom Image Sizes, Disable Image Sizes allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Image Sizes Controller, Create Custom Image Sizes, Disable Image Sizes: from n/a through 1.0.9.
Configurations

No configuration.

History

23 Jun 2025, 20:16

Type Values Removed Values Added
Summary
  • (es) La vulnerabilidad de falta de autorización en GrandPlugins Image Sizes Controller, Create Custom Image Sizes, Disable Image Sizes, permite explotar niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta al controlador de tamaños de imagen, "Crear tamaños de imagen personalizados", "Deshabilitar tamaños de imagen": desde n/d hasta la versión 1.0.9.

20 Jun 2025, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-06-20 15:15

Updated : 2025-06-23 20:16


NVD link : CVE-2025-49973

Mitre link : CVE-2025-49973

CVE.ORG link : CVE-2025-49973


JSON object : View

Products Affected

No product.

CWE
CWE-862

Missing Authorization