๐Ÿ” CVE Alert

CVE-2025-52738

MEDIUM 6.5

WordPress Wikipedia Preview plugin <= 1.15.0 - Broken Access Control vulnerability

CVSS Score
6.5
EPSS Score
0.0%
EPSS Percentile
0th

Missing Authorization vulnerability in Wikimedia Foundation Wikipedia Preview wikipedia-preview allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wikipedia Preview: from n/a through <= 1.15.0.

CWE CWE-862
Vendor wikimedia foundation
Product wikipedia preview
Published Oct 22, 2025
Last Updated Apr 1, 2026
Stay Ahead of the Next One

Get instant alerts for wikimedia foundation wikipedia preview

Be the first to know when new medium vulnerabilities affecting wikimedia foundation wikipedia preview are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Wikimedia Foundation / Wikipedia Preview
0 โ‰ค 1.15.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/wikipedia-preview/vulnerability/wordpress-wikipedia-preview-plugin-1-15-0-broken-access-control-vulnerability?_s_id=cve

Credits

Nabil Irawan | Patchstack Bug Bounty Program