Better Find and Replace < 1.6.8 – Missing Authorization to Authenticated (Subscriber+) Privilege Escalation | CVE 2025-24734 | Plugin Vulnerabilities

Description

The Better Find and Replace plugin for WordPress is vulnerable to unauthorized Privilege Escalation due to a missing capability check on the db_string_replace() function in all versions up to, and including, 1.6.7. This makes it possible for authenticated attackers, with Subscriber-level access and above, to replace values in the database that can be leveraged to achieve privilege escalation.

Affects Plugins

real-time-auto-find-and-replace

Fixed in 1.6.8

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/00b24f2f-af29-4297-b253-3242dc56542f

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Ananda Dhakal

Verified

No

WPVDB ID

276cac98-f8cf-4f14-b8fd-fbdf22e1ec93

Timeline

Publicly Published

2025-01-27 (about 1 year ago)

Added

2025-02-20 (about 1 year ago)

Last Updated

2025-02-20 (about 1 year ago)

Other

Published

Title

Published

2025-01-31

Title

Document Block – Upload & Embed Docs <= 1.1.0 - Missing Authorization

Published

2023-11-28

Title

JetEngine < 3.2.5 - Missing Authorization

Published

2024-07-08

Title

LearnDash LMS - Reports Free < 1.8.2.2 - Missing Authorization to Plugin Settings Update

Published

2024-07-05

Title

Business One Page < 1.3.0 - Missing Authorization to Notice Dismissal

Published

2025-06-05

Title

Slack Notifications by dorzki <= 2.0.7 - Missing Authorization