CVE-2025-68980

Vulnerability

Overview

The WeDesignTech Portfolio plugin for WordPress versions 1.0.2 and earlier contains a missing authorization vulnerability [1]. This broken access control issue stems from the plugin's failure to properly verify permissions or nonce tokens in certain functions, allowing unauthenticated users to perform actions that should require higher privileges [1].

Exploitation

Details

Attackers can exploit this vulnerability, an attacker does not need any authentication or special network position, as the flaw lies in publicly accessible functions that lack proper authorization checks [1]. The attack surface is broad, targeting any WordPress site running the vulnerable plugin version, making it suitable for mass-exploitable [1].

Impact

Successful exploitation enables an attacker to bypass access control restrictions, potentially leading to unauthorized modification or disclosure of portfolio data, or other unintended actions within the plugin's administrative functions [1]. The CVSS v3 base score of 5.3 reflects a medium severity, with low impact on confidentiality and integrity, but the ease of exploitation increases the risk in mass campaigns [1].

Mitigation

The vendor has released version 1.0.4 which resolves the vulnerability [1]. Users are strongly advised to update immediately. For those unable to update, applying a web application firewall rule or consulting a hosting provider is recommended [1] hosting provider is recommended [1]. Patchstack users can enable auto-updates for vulnerable plugins [1].