CVE-2025-49973 Information

Jun 21, 2025 cve

Description

Missing Authorization vulnerability in GrandPlugins Image Sizes Controller Create Custom Image Sizes Disable Image Sizes allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Image Sizes Controller Create Custom Image Sizes Disable Image Sizes: from n/a through 1.0.9.

Reference

https://patchstack.com/database/wordpress/plugin/image-sizes-controller/vulnerability/wordpress-image-sizes-controller-create-custom-image-sizes-disable-image-sizes-plugin-1-0-9-broken-access-control-vulnerability?_s_id=cve

CNNVD-202506-2689 (Published: 2025-06-20)

Share on: