Authorization Flaw in Watu Quiz Plugin by Bob Watu
CVE-2025-68587

Currently unrated

Key Information:

Vendor

WordPress
Status
Watu Quiz
Vendor
CVE Published:
24 December 2025

What is CVE-2025-68587?

A missing authorization vulnerability in the Watu Quiz plugin by Bob Watu allows attackers to exploit incorrectly configured access control security levels. This flaw impacts users on versions of Watu Quiz from n/a up to and including 3.4.5, potentially granting unauthorized access to restricted functionalities.

Affected Version(s)

Watu Quiz <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/watu...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

daroo | Patchstack Bug Bounty Program
JSON
.
CVE-2025-68587 : Authorization Flaw in Watu Quiz Plugin by Bob Watu