First published: Thu Mar 27 2025(Updated: )
Missing Authorization vulnerability in smackcoders AIO Performance Profiler, Monitor, Optimize, Compress & Debug allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AIO Performance Profiler, Monitor, Optimize, Compress & Debug: from n/a through 1.2.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
smackcoders AIO Performance Profiler, Monitor, Optimize, Compress & Debug | >n/a<=1.2 | |
smackcoders AIO Performance Profiler, Monitor, Optimize, Compress & Debug | <=1.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-22647 is considered a high severity vulnerability due to its potential for unauthorized access.
To fix CVE-2025-22647, update the AIO Performance Profiler, Monitor, Optimize, Compress & Debug to the latest version released after the vulnerability was disclosed.
CVE-2025-22647 affects the Smackcoders AIO Performance Profiler and its WordPress variant up to version 1.2.
CVE-2025-22647 is a missing authorization vulnerability that allows exploitation through incorrectly configured access control.
Yes, CVE-2025-22647 can be exploited remotely, allowing attackers to gain unauthorized access if the system is not properly secured.