CVE-2025-52802

Missing Authorization vulnerability in enguerranws Import YouTube videos as WP Posts import-youtube-videos-as-wp-post allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Import YouTube videos as WP Posts: from n/a through <= 2.1.

CVSS

No CVSS.

References

Link	Resource
https://patchstack.com/database/Wordpress/Plugin/import-youtube-videos-as-wp-post/vulnerability/wordpress-import-youtube-videos-as-wp-posts-plugin-2-1-broken-access-control-vulnerability?_s_id=cve

Configurations

No configuration.

History

01 Apr 2026, 17:25

Type	Values Removed	Values Added
Summary	(en) Missing Authorization vulnerability in enguerranws Import YouTube videos as WP Posts allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Import YouTube videos as WP Posts: from n/a through 2.1.	(en) Missing Authorization vulnerability in enguerranws Import YouTube videos as WP Posts import-youtube-videos-as-wp-post allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Import YouTube videos as WP Posts: from n/a through <= 2.1.
References	{'url': 'https://patchstack.com/database/wordpress/plugin/import-youtube-videos-as-wp-post/vulnerability/wordpress-import-youtube-videos-as-wp-posts-plugin-2-1-broken-access-control-vulnerability?_s_id=cve', 'source': 'audit@patchstack.com'}	() https://patchstack.com/database/Wordpress/Plugin/import-youtube-videos-as-wp-post/vulnerability/wordpress-import-youtube-videos-as-wp-posts-plugin-2-1-broken-access-control-vulnerability?_s_id=cve -
CVSS	v2 : ~~unknown~~ v3 : ~~7.5~~	v2 : unknown v3 : unknown

23 Jun 2025, 20:16

Type	Values Removed	Values Added
Summary		(es) La vulnerabilidad de falta de autorización en la función enguerranws Import YouTube videos as WP Posts permite explotar niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta a Import YouTube videos as WP Posts: desde la versión n/d hasta la 2.1.

20 Jun 2025, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-06-20 15:15

Updated : 2026-04-01 17:25

NVD link : CVE-2025-52802

Mitre link : CVE-2025-52802

CVE.ORG link : CVE-2025-52802

JSON object : View

Products Affected

No product.

CWE

CWE-862

Missing Authorization

JSON object

Attach tags to CVE-2025-52802

Attach tags to `CVE-2025-52802`