First published: Thu Mar 27 2025(Updated: )
Missing Authorization vulnerability in Epsiloncool WP Fast Total Search allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Fast Total Search: from n/a through 1.79.262.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
WordPress WP Fast Total Search | <=1.79.262 | |
WP Fast Total Search | <=1.79.262 |
Update the WordPress WP Fast Total Search plugin to the latest available version (at least 1.79.264).
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-30894 is classified as a missing authorization vulnerability that can lead to unauthorized access.
To fix CVE-2025-30894, update the Epsiloncool WP Fast Total Search plugin to the latest version beyond 1.79.262.
CVE-2025-30894 affects all versions of WP Fast Total Search up to and including 1.79.262.
CVE-2025-30894 exposes incorrectly configured access control security levels that can be exploited.
The vendor of the affected software for CVE-2025-30894 is Epsiloncool.