CVE-2025-48348 | Vulnerability Database

NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-48348
CWE	https://cwe.mitre.org/data/definitions/266.html

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-48348

CWE

https://cwe.mitre.org/data/definitions/266.html

Incorrect Privilege Assignment vulnerability in chandrashekharsahu Site Offline allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Site Offline: from n/a through 1.5.7.

Weakness

A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

Potential Mitigations

References

https://patchstack.com/database/wordpress/plugin/site-offline/vulnerability/wordpress-site-offline-plugin-1-5-7-broken-access-control-vulnerability?_s_id=cve