CVE-2025-48166

MEDIUM

Bill Minozzi Stop and Block bots plugin Anti bots <1.49 - Info Disc...

Title source: llm

Description

Missing Authorization vulnerability in sminozzi Stop and Block bots plugin Anti bots antibots allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Stop and Block bots plugin Anti bots: from n/a through <= 1.48.

References (2)

Core 2

Core References

Vdb Entry vdb-entry

https://patchstack.com/database/Wordpress/Plugin/antibots/vulnerability/wordpress-stop-and-block-bots-plugin-anti-bots-1-48-broken-access-control-vulnerability?_s_id=cve

Third Party Advisory

https://patchstack.com/database/wordpress/plugin/antibots/vulnerability/wordpress-stop-and-block-bots-plugin-anti-bots-1-48-broken-access-control-vulnerability?_s_id=cve

Scores

CVSS v3 5.3

EPSS 0.0027

EPSS Percentile 17.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-862

Status published

Products (2)

Bill Minozzi/Stop and Block bots plugin Anti bots < 1.48

sminozzi/Stop and Block bots plugin Anti bots < 1.48

Published Jul 16, 2025

Tracked Since Feb 18, 2026