cleantalk
Vulnerabilities and Security Researches

Comments – wpDiscuz, CVE-2025-59591

CVE, Research URL

CVE-2025-59591

Home page URL

Security reports for Comments – wpDiscuz

Application

Comments – wpDiscuz

Published on
Sep 23, 2025
Research Description
Missing Authorization vulnerability in AdvancedCoding wpDiscuz allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects wpDiscuz: from n/a through 7.6.33.
Affected versions
Min -, max 7.6.34.
Status
vulnerable
Previous vulnerability researches
Uncanny Toolkit for LearnDash (CVE-2023-23714) , Jun 06, 2024
Uncanny Toolkit for LearnDash (CVE-2025-22268) , Apr 14, 2025
Uncanny Toolkit for LearnDash (CVE-2023-34019) , Jun 10, 2024
Uncanny Toolkit for LearnDash (CVE-2025-48080) , May 18, 2025
Uncanny Toolkit for LearnDash (CVE-2023-34020) , Jun 06, 2024
New vulnerability
Unify (CVE-2025-9130) , Oct 11, 2025
Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress (CVE-2025-10498) , Oct 11, 2025
Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress (CVE-2025-10499) , Oct 11, 2025
SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer (CVE-2025-11163) , Oct 11, 2025
Quiz Maker (CVE-2025-10042) , Oct 10, 2025