How severe is CVE-2025-39477?

CVE-2025-39477 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2025-39477

9.8CRITICAL

Missing Authorization vulnerability in Sfwebservice InWave Jobs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects InWave Jobs: from n/a through 3.5.8.

Publicado: 1/6/2026Actualizado: 1/8/2026

Descripción

Missing Authorization vulnerability in Sfwebservice InWave Jobs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects InWave Jobs: from n/a through 3.5.8.

Análisis IAImpulsado por IA

Referencias

https://patchstack.com/database/wordpress/plugin/iwjob/vulnerability/wordpress-inwave-jobs-plugin-3-5-8-broken-access-control-vulnerability?_s_id=cve