First published: Tue Feb 04 2025(Updated: )
Incorrect Privilege Assignment vulnerability in wpase.com Admin and Site Enhancements (ASE) allows Privilege Escalation. This issue affects Admin and Site Enhancements (ASE): from n/a through 7.6.2.1.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
WordPress Admin and Site Enhancements (ASE) Plugin | <=7.6.2.1 | |
Admin and Site Enhancements (ASE) | <=7.6.2.1 |
Update the WordPress Admin and Site Enhancements (ASE) wordpress plugin to the latest available version (at least 7.6.3).
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-24648 has a severity rating that indicates it allows privilege escalation, potentially compromising user permissions.
To fix CVE-2025-24648, update the wpase.com Admin and Site Enhancements (ASE) plugin to a version later than 7.6.2.1.
CVE-2025-24648 affects all versions of the wpase.com Admin and Site Enhancements (ASE) plugin up to and including version 7.6.2.1.
CVE-2025-24648 is classified as an Incorrect Privilege Assignment vulnerability.
Yes, CVE-2025-24648 affects the Admin and Site Enhancements (ASE) plugin specifically designed for WordPress.