CVE-2025-48108
BaseFortify
Publication date: 2025-08-26
Last updated on: 2025-08-26
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| patchstack | wordpress_school_management_plugin | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-48108 is a Broken Access Control vulnerability in the WordPress School Management Plugin versions up to 93.2.0. It occurs due to missing authorization, authentication, or nonce token checks in certain functions, allowing users with only Support Staff privileges to perform actions that should be restricted to higher-privileged roles. This means unauthorized privilege escalation is possible because the plugin does not properly enforce access control. [1]
How can this vulnerability impact me? :
This vulnerability can allow an attacker with Support Staff level access to perform unauthorized actions reserved for higher-privileged users, potentially leading to privilege escalation within the School Management system. Although the CVSS score is 6.5 indicating low severity and exploitation risk is considered low, if exploited it could compromise the integrity of the system by allowing unauthorized modifications or access to sensitive functions. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection involves checking for unauthorized privilege escalation attempts or access to functions requiring Support Staff privileges without proper authorization. Since the vulnerability arises from missing authorization checks in the WordPress School Management Plugin (β€ 93.2.0), monitoring logs for unusual access patterns or privilege escalations is recommended. No specific commands are provided in the resources. It is also advised to perform professional incident response and server-side malware scanning if compromise is suspected. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation includes applying Patchstack's virtual patching (vPatch) solution, which auto-mitigates the vulnerability without requiring an official plugin update. Additionally, professional incident response and server-side malware scanning are recommended if a compromise is suspected. Since no official fix or patch is available as of the publication date, relying on virtual patching and monitoring is critical. [1]