Missing Authorization vulnerability in Rocket Apps wProject.This issue affects wProject: from n/a before 5.8.0.
History

Mon, 19 May 2025 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 19 May 2025 20:00:00 +0000

Type Values Removed Values Added
Description Missing Authorization vulnerability in Rocket Apps wProject.This issue affects wProject: from n/a before 5.8.0.
Title WordPress wProject theme < 5.8.0 - Unauthenticated Post/Comment/Attachment Modification/Deletion vulnerability
Weaknesses CWE-862
References
Metrics cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2025-05-19T19:50:15.064Z

Updated: 2025-05-19T21:19:31.963Z

Reserved: 2025-04-16T06:22:10.074Z

Link: CVE-2025-39350

cve-icon Vulnrichment

Updated: 2025-05-19T21:11:20.239Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-05-19T20:15:23.043

Modified: 2025-05-21T20:25:16.407

Link: CVE-2025-39350

cve-icon Redhat

No data.