CVE 9.8 CRITICAL

WordPress MSTW CSV EXPORTER plugin <= 1.4 - Broken Access Control vulnerability_CVE-2025-62944

October 28, 2025 invoker category_cve
9.8 / 10
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Missing Authorization vulnerability in Mark O'Donnell MSTW CSV EXPORTER mstw-csv-exporter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MSTW CSV EXPORTER: from n/a through <= 1.4.

AI Analysis

Broken Access Control vulnerability in MSTW CSV EXPORTER plugin due to missing authorization

Basic Information

ID CVE-2025-62944
Source Patchstack
Published Oct 27, 2025 at 01:34
Modified Oct 28, 2025 at 13:47

Affected Product

Vendor Mark O'Donnell
Product MSTW CSV EXPORTER
Version n/a
Affected Versions Mark O'Donnell MSTW CSV EXPORTER n/a

CWE Classification

CWE-862

AI Assessment

AI Score 9.8 / 10
AI Severity Critical
Vendor Mark O'Donnell
Product MSTW CSV EXPORTER
Version <= 1.4

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.