cleantalk
Vulnerabilities and Security Researches

CoSchedule, CVE-2025-49913

CVE, Research URL

CVE-2025-49913

Home page URL

Security reports for CoSchedule

Application

CoSchedule

Published on
Oct 22, 2025
Research Description
Missing Authorization vulnerability in CoSchedule CoSchedule coschedule-by-todaymade allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CoSchedule: from n/a through <= 3.4.0.
Affected versions
max 3.4.0.
Status
vulnerable
Previous vulnerability researches
Did Prestashop Display &#8211; Show Prestashop products in your WordPress (CVE-2025-62945) , Nov 10, 2025
New vulnerability
Advanced Custom Fields : CPT Options Pages (CVE-2025-60208) , Nov 11, 2025
Doliconnect (CVE-2025-53574) , Nov 11, 2025
Advanced scrollbar &#8211; Customize the scrollbar (CVE-2025-49900) , Nov 11, 2025
Immocaster WordPress Plugin (CVE-2025-60190) , Nov 11, 2025
Integrate Google Drive &#8211; Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y (CVE-2025-12139) , Nov 11, 2025