Missing Authorization Vulnerability in WP Document Revisions by Ben Balter
CVE-2025-68585

Currently unrated

Key Information:

Vendor

WordPress
Status
WP Document Revisions
Vendor
CVE Published:
24 December 2025

What is CVE-2025-68585?

A missing authorization vulnerability has been identified in the WP Document Revisions plugin developed by Ben Balter. This flaw allows attackers to exploit incorrectly configured access control settings, potentially leading to unauthorized access to sensitive documents. The issue affects versions of WP Document Revisions up to and including 3.7.2. Users are urged to review their access configurations and apply any available updates to ensure robust security and protect against unauthorized access.

Affected Version(s)

WP Document Revisions <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/wp-d...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Nabil Irawan | Patchstack Bug Bounty Program
JSON
.
CVE-2025-68585 : Missing Authorization Vulnerability in WP Document Revisions by Ben Balter