cleantalk
Vulnerabilities and Security Researches

Editor Custom Color Palette, CVE-2025-57909

CVE, Research URL

CVE-2025-57909

Home page URL

Security reports for Editor Custom Color Palette

Application

Editor Custom Color Palette

Published on
Sep 23, 2025
Research Description
Missing Authorization vulnerability in Rouergue Création Editor Custom Color Palette allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Editor Custom Color Palette: from n/a through 3.4.8.
Affected versions
max 3.4.8.
Status
vulnerable
Previous vulnerability researches
Editor Custom Color Palette (CVE-2025-57909) , Oct 12, 2025
Editor Custom Color Palette (CVE-2024-9642) , Oct 26, 2024
Color Palette (CVE-2025-5233) , Jun 15, 2025
New vulnerability
GitHub Gist Shortcode Plugin (CVE-2025-12667) , Dec 12, 2025
Cryptocurrency Payment Gateway for WooCommerce (CVE-2025-12392) , Dec 12, 2025
Wbcom Designs – Private Community for BuddyPress (CVE-2025-67582) , Dec 12, 2025
WP-Walla (CVE-2025-12589) , Dec 12, 2025
Master Addons for Elementor (CVE-2025-63055) , Dec 12, 2025