Authorization Bypass Through User-Controlled Key vulnerability in favethemes Houzez houzez allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Houzez: from n/a through <= 4.1.1.
Metrics
Affected Vendors & Products
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Wed, 22 Oct 2025 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Authorization Bypass Through User-Controlled Key vulnerability in favethemes Houzez houzez allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Houzez: from n/a through <= 4.1.1. | |
Title | WordPress Houzez Theme <= 4.1.1 - Insecure Direct Object References (IDOR) Vulnerability | |
Weaknesses | CWE-639 | |
References |
|

Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2025-10-22T14:32:19.320Z
Reserved: 2025-06-11T16:07:27.326Z
Link: CVE-2025-49952

No data.

Status : Awaiting Analysis
Published: 2025-10-22T15:15:41.620
Modified: 2025-10-22T21:12:32.330
Link: CVE-2025-49952

No data.

No data.