ByteOS Network

BBP Core

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

1Vulnerabilities found

CVE-2025-68572

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-8.8||HIGH

EPSS-0.05% / 15.47%

7 Day CHG~0.00%

Published-24 Dec, 2025 | 13:10

Updated-20 Jan, 2026 | 15:19

WordPress BBP Core plugin <= 1.4.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Spider Themes BBP Core bbp-core allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BBP Core: from n/a through <= 1.4.1.

Vendor-Spider Themes

Product-BBP Core

CWE ID-CWE-862

Missing Authorization