Anti-Malware Security and Brute-Force Firewall < 4.23.83 – Missing Authorization to Authenticated (Subscriber+) Arbitrary File Read | CVE 2025-11705 | Plugin Vulnerabilities

Description

The Anti-Malware Security and Brute-Force Firewall plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 4.23.81 due to a missing capability check combined with an information exposure in several GOTMLS_* AJAX actions. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.

Affects Plugins

Fixed in 4.23.83

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/e2c8838c-d29a-4df8-85b3-6e440ba7f962

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Dmitrii Ignatyev

Verified

No

WPVDB ID

80f88be8-e056-4f2a-bd5f-9abf40ddac6a

Timeline

Publicly Published

2025-10-28 (about 7 months ago)

Added

2025-10-28 (about 7 months ago)

Last Updated

2025-10-29 (about 7 months ago)

Other

Published

Title

Published

2022-11-28

Title

Popup Manager <= 1.6.6 - Unauthenticated Arbitrary Popup Deletion

Published

2024-12-18

Title

WP SuperBackup < 2.4 - Missing Authorization to Unauthenticated Back-Up File Download

Published

2024-08-01

Title

WP Social Feed Gallery < 4.4.0 - Missing Authorization

Published

2023-12-06

Title

System Dashboard < 2.8.8 - Missing Authorization to Information Disclosure (sd_db_specs)

Published

2024-04-15

Title

WPC Grouped Product for WooCommerce < 4.4.3 - Missing Authorization