Access Control Issues in B Slider by bPlugins
CVE-2025-54734

5.8MEDIUM

Key Information:

Vendor: WordPress
Status: B Slider
Vendor: CVE Published:; 28 August 2025

What is CVE-2025-54734?

The B Slider plugin from bPlugins suffers from a missing authorization vulnerability, which allows attackers to exploit incorrectly configured access control security levels. This issue compromises the intended restrictions on user access, potentially leading to unauthorized actions within the system. The vulnerability affects all versions of B Slider up to 1.1.30, making it critical for users to investigate their configurations and implement necessary security measures to avoid exploitation.

Affected Version(s)

B Slider <= 1.1.30

References

https://patchstack.com/database/wordpress/plugin/b-slider...

vdb-entry

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 28, 2025
Vulnerability Reserved
Jul 28, 2025

Credit

Denver Jackson (Patchstack Alliance)

WordPress

What is CVE-2025-54734?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit