Authorization Flaw in ExactMetrics Plugin by ExactMetrics
CVE-2025-24750
5.4MEDIUM
What is CVE-2025-24750?
The ExactMetrics plugin experiences a missing authorization vulnerability, allowing attackers to exploit incorrectly configured access control security levels. This affects users of ExactMetrics across various versions, including 8.1.0, leading to potential unauthorized actions and data exposure.
Affected Version(s)
ExactMetrics <= 8.1.0