cleantalk
Vulnerabilities and Security Researches

CoSchedule, CVE-2025-49913

CVE, Research URL

CVE-2025-49913

Home page URL

Security reports for CoSchedule

Application

CoSchedule

Published on
Oct 22, 2025
Research Description
Missing Authorization vulnerability in CoSchedule CoSchedule coschedule-by-todaymade allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CoSchedule: from n/a through <= 3.4.0.
Affected versions
max 3.4.0.
Status
vulnerable
Previous vulnerability researches
Zip Attachments (CVE-2015-4694) , Jun 07, 2024
Zip Attachments (CVE-2025-11692) , Nov 10, 2025
Zip Attachments (CVE-2025-11701) , Nov 10, 2025
New vulnerability
WP Gmail SMTP (172cc1f3c82eb47a0e2bb5d14ce96f28ededb179) , Nov 11, 2025
WP Gmail SMTP (CVE-2025-53232) , Nov 11, 2025
Connector for Gravity Forms and Google Sheets (CVE-2025-60209) , Nov 11, 2025
Email Tracker – Email Tracking Plugin to track Emails for Open and Email Links Click (Compatible with WooCommerce) (CVE-2025-10047) , Nov 11, 2025
Advanced Ads – Ad Manager &amp; AdSense (CVE-2025-10487) , Nov 11, 2025