Missing Authorization Flaw in YITH Slider for Page Builders by YITHEMES
CVE-2025-68581

Currently unrated

Key Information:

Vendor

WordPress
Status
Yith Slider For Page Builders
Vendor
CVE Published:
24 December 2025

What is CVE-2025-68581?

A missing authorization vulnerability exists in the YITH Slider for Page Builders plugin, specifically due to incorrectly configured access control security levels. This flaw could allow unauthorized users to exploit the plugin, potentially compromising the security of affected websites. Users of YITH Slider for Page Builders, particularly those using versions up to 1.0.11, are advised to review their security settings and apply necessary updates to mitigate the risks associated with this vulnerability.

Affected Version(s)

YITH Slider for page builders <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/yith...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Nabil Irawan | Patchstack Bug Bounty Program
JSON
.
CVE-2025-68581 : Missing Authorization Flaw in YITH Slider for Page Builders by YITHEMES