Cnvrse: Exploiting Access Control Settings Can Bypass Security

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.5

Cnvrse: Exploiting Access Control Settings Can Bypass Security

CVE-2025-69394

Summary

A mistake in the way Cnvrse controls user access can allow an attacker to access sensitive information or features they shouldn't have permission to. This issue affects all versions of Cnvrse up to 2.6.2.10.2. It's essential for Cnvrse administrators to review and correct their access control settings to prevent unauthorized access.

Original title

Authorization Bypass Through User-Controlled Key vulnerability in cnvrse Cnvrse cnvrse allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cnvrse: from n/a th...

Original description

nvd CVSS3.1 7.5

Vulnerability type

CWE-639 Authorization Bypass Through User-Controlled Key

https://patchstack.com/database/Wordpress/Plugin/cnvrse/vulnerability/wordpress-...

Published: 20 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026