CVE-2025-47527
BaseFortify
Publication date: 2025-06-09
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
The vulnerability can allow unprivileged users to perform unauthorized actions, potentially leading to unauthorized modifications or disruptions. Although it does not impact confidentiality, it can affect the integrity and availability of the system, which may result in service disruption or unauthorized changes. Attackers may automate exploitation attempts, increasing the risk of compromise if the plugin is not updated. [1]
Can you explain this vulnerability to me?
This vulnerability is a Broken Access Control issue in the Icegram Collect β Easy Form, Lead Collection and Subscription WordPress plugin up to version 1.3.18. It occurs due to missing authorization, authentication, or nonce token checks in certain functions, which allows users with low privileges (Subscriber-level) to perform actions that should be restricted to higher privileged users. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this vulnerability involves checking the version of the Icegram Collect plugin to see if it is version 1.3.18 or earlier, as these are affected. Additionally, monitoring for unauthorized actions performed by users with Subscriber-level privileges can indicate exploitation attempts. Since the vulnerability allows privilege escalation via missing authorization checks, reviewing access logs for suspicious activity or unexpected privilege use is recommended. There are no specific commands provided in the resources, but general steps include verifying plugin version via WordPress admin or command line (e.g., wp plugin list), and scanning server logs for unusual access patterns. Professional incident response and server-side malware scanning are advised if compromise is suspected. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include updating the Icegram Collect plugin to version 1.3.19 or later, where the vulnerability is fixed. If immediate update is not possible, applying the virtual patch (vPatch) provided by Patchstack can automatically block attacks exploiting this vulnerability. Enabling auto-update features for the plugin is also recommended to prevent exploitation. In case of suspected compromise, professional incident response and server-side malware scanning should be conducted. [1]