3 matches found
CVE-2025-49872
Missing Authorization vulnerability in Saad Iqbal myCred mycred allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects myCred: from n/a through = 2.9.4.2...
CVE-2025-49872 WordPress myCred plugin <= 2.9.4.2 - Broken Access Control Vulnerability
Missing Authorization vulnerability in WPExperts.io myCred allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects myCred: from n/a through 2.9.4.2...
CVE-2025-49872
CVE-2025-49872 is a Missing Authorization (Broken Access Control) vulnerability affecting the WordPress plugin myCred (versions up to and including 2.9.4.2). The advisory states that functionality is accessible without proper ACL enforcement, enabling access to restricted features. The CVSS v3.1 ...