Missing Authorization vulnerability in villatheme CURCY allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects CURCY: from n/a through 2.3.7.
Metrics
Affected Vendors & Products
References
History
Fri, 16 May 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 16 May 2025 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Missing Authorization vulnerability in villatheme CURCY allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects CURCY: from n/a through 2.3.7. | |
Title | WordPress CURCY plugin <= 2.3.7 - Arbitrary Shortcode Execution vulnerability | |
Weaknesses | CWE-862 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: Patchstack
Published: 2025-05-16T15:45:19.130Z
Updated: 2025-05-16T16:50:05.579Z
Reserved: 2025-05-07T09:40:07.681Z
Link: CVE-2025-47563

Updated: 2025-05-16T16:37:27.136Z

Status : Awaiting Analysis
Published: 2025-05-16T16:15:42.567
Modified: 2025-05-19T13:35:50.497
Link: CVE-2025-47563

No data.