Untriaged
Permalink
CVE-2025-31846
4.3 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): LOW
- Availability impact (A): NONE
WordPress Theater for WordPress plugin <= 0.18.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in Jeroen Schmit Theater for WordPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Theater for WordPress: from n/a through 0.18.7.
References
Affected products
theatre
- =<0.18.7
Matching in nixpkgs
pkgs.haskellPackages.theatre-dev
Minimalistic actor library experiments
-
nixos-unstable -
- nixpkgs-unstable 0.5.0.1