Medium severity5.3NVD Advisory· Published Dec 9, 2025· Updated Apr 15, 2026
CVE-2025-67572
CVE-2025-67572
Description
Missing Authorization vulnerability in PenciDesign PenNews pennews allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PenNews: from n/a through < 6.7.4.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<6.7.4+ 1 more
- (no CPE)range: <6.7.4
- (no CPE)range: < 6.7.4
Package: https://wordpress.org/themes/pennews
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.