CVE-2025-53346
Missing Authorization in Thim Core Plugin
Publication date: 2026-06-02
Last updated on: 2026-06-02
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| thimpress | thim_core | to 2.3.3 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability in ThimPress Thim Core Plugin (versions 2.3.3 and below) is a Broken Access Control issue caused by missing authorization checks. This means that users with low privileges, such as Subscribers, can perform actions that should be restricted to higher-privileged users. The problem arises because the plugin does not properly verify user permissions or use nonce token checks to prevent unauthorized actions.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability in ThimPress Thim Core allows unprivileged users to perform higher-privileged actions due to missing authorization checks, which could lead to unauthorized access or modification of data.
Such unauthorized access or privilege escalation may impact compliance with standards and regulations like GDPR or HIPAA, which require strict access controls to protect personal and sensitive data.
However, the provided information does not explicitly state the direct impact on compliance with these regulations.
How can this vulnerability impact me? :
This vulnerability can allow unprivileged users to execute actions that require higher privileges, potentially leading to unauthorized changes or access within the affected WordPress site. Although it is classified as low severity and considered unlikely to be exploited, attackers might still attempt to exploit it in mass campaigns. The impact is limited to integrity since confidentiality and availability are not affected.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability allows unprivileged users, such as those with a Subscriber role, to perform higher-privileged actions due to missing authorization checks in the Thim Core plugin versions 2.3.3 and below.
Detection can involve monitoring for unusual privilege escalations or unauthorized actions performed by low-privileged users within the WordPress environment.
Specific commands are not provided in the available resources, but general approaches include reviewing WordPress user activity logs, checking for unexpected changes or actions performed by Subscriber roles, and scanning for the presence of the vulnerable plugin version.
- Check the installed version of the Thim Core plugin to confirm if it is version 2.3.3 or below.
- Review WordPress user activity logs for actions performed by Subscriber or other low-privileged roles that should require higher privileges.
- Use WordPress CLI commands such as `wp plugin list` to identify plugin versions.
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include updating the Thim Core plugin to the latest version if an update is available.
As of the report date, no official patch was available, so users are advised to seek assistance from their hosting provider or web developer to implement temporary access control restrictions.
Additionally, review and restrict user roles and permissions to minimize the risk of privilege escalation.
Monitoring for suspicious activity and applying general WordPress security best practices can also help mitigate exploitation risks.