WordPress Plugin Vulnerabilities

wpDiscuz < 7.6.44 - Unauthenticated Insecure Direct Object Reference

Description

The Comments – wpDiscuz plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.6.42 due to missing validation on a user controlled key. This makes it possible for unauthenticated attackers to perform unauthorized actions.

Affects Plugins

Plugin icon
wpdiscuz
Fixed in 7.6.44

References

CVE
CVE-2025-68997
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/7158ed57-37b4-43ac-b323-46febaaccffc

Classification

Type
IDOR
OWASP top 10
A5: Broken Access Control
CWE
CWE-639
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
Doan Dinh Van (DinhVan52)
Verified
No
WPVDB ID
289c3c35-9fe0-4c0c-8f2b-f4c0a63242a4

Timeline

Publicly Published
2025-12-25 (about 4 months ago)
Added
2026-01-06 (about 4 months ago)
Last Updated
2026-01-20 (about 3 months ago)

Other

Published
Title
Published
2024-08-21
Title
User Private Files < 2.1.1 - Insecure Direct Object Reference to Authenticated (Subscriber+) Private File Access
Published
2025-12-06
Title
Thim Elementor Kit < 1.3.4 - Authenticated (Contributor+) Insecure Direct Object Reference
Published
2026-01-09
Title
WooCommerce Square < 5.1.2 - Unauthenticated Insecure Direct Object Reference to Sensitive Information Exposure in get_token_by_id
Published
2026-01-06
Title
LearnPress – WordPress LMS Plugin < 4.3.2.2 - Insecure Direct Object Reference to Authenticated (Instructor+) Teacher Material Deletion
Published
2026-05-01
Title
App Builder <= 5.5.10 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Avatar Modification via 'user_id' Parameter