CVE-2025-24580

Medium CVSS: 6.5

Missing Authorization vulnerability in AA Web Servant 12 Step Meeting List 12-step-meeting-list allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 12 Step Meeting List: from n/a through <= 3.16.5.

Vendor

Product

CWE

CWE-862

Yayın Tarihi

2025-01-24 18:15:35

Güncelleme

2026-04-23 15:25:03

Source Identifier

audit@patchstack.com

KEV Date Added

Kategoriler

CWE-862 MEDIUM 2025

Referanslar

https://patchstack.com/database/Wordpress/Plugin/12-step-meeting-list/vulnerability/wordpress-12-step-meeting-list-plugin-3-16-5-arbitrary-content-deletion-vulnerability?_s_id=cve