Missing Authorization Vulnerability in QuadLayers TikTok Feed
CVE-2025-63016
5.3MEDIUM
What is CVE-2025-63016?
A missing authorization vulnerability exists in the QuadLayers TikTok Feed plugin for WordPress. This issue arises from incorrectly configured access control security levels that can be exploited by unauthorized users to gain access to restricted data or functionality. This vulnerability affects multiple versions of the plugin, including those from the initial release up to version 4.6.4, raising significant concerns regarding the security and integrity of user data.
Affected Version(s)
QuadLayers TikTok Feed 0 <= 4.6.5