WordPress Plugin Vulnerabilities

ACF Photo Gallery Field < 3.1 - Missing Authorization to Authenticated (Subscriber+) Attachment Metadata Modification

Description

The ACF Photo Gallery Field plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the "acf_photo_gallery_edit_save" function in all versions up to, and including, 3.0. This makes it possible for authenticated attackers, with subscriber level access and above, to modify the title, caption, and custom metadata of arbitrary media attachments.

Affects Plugins

Plugin icon
navz-photo-gallery
Fixed in 3.1

References

CVE
CVE-2025-12081
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/d52a1c67-e20d-4390-9d07-94337a31d193

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Rafshanzani Suhada
Verified
No
WPVDB ID
4da1842d-5fca-4986-8b11-f5474c77f684

Timeline

Publicly Published
2026-02-18 (about 3 months ago)
Added
2026-02-18 (about 3 months ago)
Last Updated
2026-02-19 (about 3 months ago)

Other

Published
Title
Published
2025-11-20
Title
Better Chat Support for Messenger < 1.2.19 - Missing Authorization
Published
2026-04-16
Title
MyRewards < 5.7.4 - Missing Authorization
Published
2024-10-10
Title
Linkz.ai < 1.2.0 - Unauthenticated Plugin Settings Update
Published
2025-11-30
Title
WpEvently < 5.0.5 - Missing Authorization
Published
2024-02-06
Title
Quiz Maker < 6.5.2.5 - Missing Authorization to Unauthenticated Quiz Data Retrieval