CVE-2025-52785

Missing Authorization vulnerability in softnwords SMM API smm-api allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SMM API: from n/a through <= 6.0.31.

CVSS

No CVSS.

References

Link	Resource
https://patchstack.com/database/Wordpress/Plugin/smm-api/vulnerability/wordpress-smm-api-plugin-6-0-30-broken-access-control-vulnerability?_s_id=cve

Configurations

No configuration.

History

01 Apr 2026, 17:25

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~7.1~~	v2 : unknown v3 : unknown
References	~~{'url': 'https://patchstack.com/database/wordpress/plugin/smm-api/vulnerability/wordpress-smm-api-plugin-6-0-30-broken-access-control-vulnerability?_s_id=cve', 'source': 'audit@patchstack.com'}~~	() https://patchstack.com/database/Wordpress/Plugin/smm-api/vulnerability/wordpress-smm-api-plugin-6-0-30-broken-access-control-vulnerability?_s_id=cve -
Summary	~~(en) Missing Authorization vulnerability in softnwords SMM API allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects SMM API: from n/a through 6.0.30.~~	(en) Missing Authorization vulnerability in softnwords SMM API smm-api allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SMM API: from n/a through <= 6.0.31.

14 Aug 2025, 13:11

Type	Values Removed	Values Added
Summary		(es) La vulnerabilidad de falta de autorización en softnwords SMM API permite explotar niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta a API SMM desde la versión n/d hasta la 6.0.30.

14 Aug 2025, 11:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-14 11:15

Updated : 2026-04-01 17:25

NVD link : CVE-2025-52785

Mitre link : CVE-2025-52785

CVE.ORG link : CVE-2025-52785

JSON object : View

Products Affected

No product.

CWE

CWE-862

Missing Authorization

JSON object

Attach tags to CVE-2025-52785

Attach tags to `CVE-2025-52785`