CVE-2025-49334

Unknown CVSS: -

Authorization Bypass Through User-Controlled Key vulnerability in Eduardo Villão MyD Delivery myd-delivery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MyD Delivery: from n/a through <= 1.7.1.

Vendor

Product

CWE

CWE-639

Yayın Tarihi

2025-12-31 16:15:42

Güncelleme

2026-04-01 17:25:07

Source Identifier

audit@patchstack.com

KEV Date Added

Kategoriler

CWE-639 2025

Referanslar

https://patchstack.com/database/Wordpress/Plugin/myd-delivery/vulnerability/wordpress-myd-delivery-plugin-1-3-7-insecure-direct-object-references-idor-vulnerability?_s_id=cve