cleantalk
Vulnerabilities and Security Researches

bunny.net – WordPress CDN Plugin, CVE-2025-68049

CVE, Research URL

CVE-2025-68049

Home page URL

Security reports for bunny.net – WordPress CDN Plugin

Application

bunny.net – WordPress CDN Plugin

Published on
Jun 16, 2026
Research Description
Subscriber Broken Access Control in bunny.net <= 2.3.6 versions.
Affected versions
max 2.3.7.
Status
vulnerable
Previous vulnerability researches
Wireless Butler (CVE-2025-26997) , Apr 15, 2025
New vulnerability
wpDataTables &#8211; WordPress Data Table, Dynamic Tables &amp; Table Charts Plugin (CVE-2026-49080) , Jun 16, 2026
The Events Calendar (CVE-2026-49772) , Jun 16, 2026
WooCommerce Stripe Payment Gateway (CVE-2026-2381) , Jun 16, 2026
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026