Missing Authorization Vulnerability in Bit Assist by Bit Apps
CVE-2025-68596

Currently unrated

Key Information:

Vendor

WordPress
Status
Bit Assist
Vendor
CVE Published:
24 December 2025

What is CVE-2025-68596?

Bit Assist, developed by Bit Apps, suffers from a missing authorization vulnerability that allows for the exploitation of incorrectly configured access control security levels. This vulnerability affects users of Bit Assist from version n/a through version 1.5.11, potentially allowing unauthorized access to sensitive functionalities.

Affected Version(s)

Bit Assist <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/bit-...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

NumeX | Patchstack Bug Bounty Program
JSON
.
CVE-2025-68596 : Missing Authorization Vulnerability in Bit Assist by Bit Apps